Take ownership problem in NT - lsa_lookup_names
Jim McDonough
jmcd at us.ibm.com
Wed Aug 8 13:18:12 GMT 2001
Apologies if this comes as a dup. We've had some network problems lately,
but I didn't see this note hit the list yesterday when I sent it.
I was trying to reproduce the WIn9x take ownership problem, where a user
without permission can take ownership of a file on 2.2 with ACLs (I can
reproduce it) to get some traces and captures, so I thought I would try it
on NT. My samba server has a fairly recent 2.2 from cvs, with winbind.
The PDC is also 2.2.
What I ended up with is the error:
Unable to take ownership because the account "SAMBADOMAIN\jmcd##$#$@$"
could not be accessed on the remote machine due to the following error:
The account could not be found.
The symbols following the userid are random junk. Different ones each
time, often just boxes.
Along with this is the capture:
NT -> SAMBA: LSA 0x2D LSA_GET_UNK_CONNUSER
SAMBA->NT: user=jmcd domain=SAMBADOMAIN
NT -> SAMBA: LSA 0xE LSA_LOOKUP_NAMES SAMBADOMAIN\jmcd##$#$@$
Anyone seen this before?
Capture is available if anyone is interested. The format of the 0x2D
response looks good to me...
----------------------------
Jim McDonough
IBM Linux Technology Center
6 Minuteman Drive
Scarborough, ME 04074
USA
jmcd at us.ibm.com
Phone: (207) 885-5565
IBM tie-line: 776-9984
More information about the samba-technical
mailing list