[linux-cifs-client] cifs not authenticating,
causing a DOS to samba with security=share
Santiago Garcia Mantinan
cifs at manty.net
Fri May 21 11:48:32 GMT 2004
Hi!
I was having trouble getting cifs to authenticate against my samba 3.0.2a,
after some investigation I found out that if I set security=user instead of
security=share it would work ok.
The client is the one in Linux 2.6.6, the server is the Samba in Debian
unstable, the share I was trying to mount was not public and only user stb
had access to it in any of the two security modes.
I have done a capture of the packages and then compared a failing
security=share and a working security=user sessions using ethereal, these
are the differences I have found, I have tried to make a table with 4
colums, the first one would be the packet type, then the field of the packet
in which I apreciated a difference and then the contents of this field for
both sessions.
Packet type: Field: security user: security share:
-Negociate protocol request
-Negociate protocol response 3 2
-Session Setup AndX Request, ANSI pass len 24 1
User: WORKGROUP\stb Unicode " " 24 0
ANSI pass 24 bytes 0x00
Unicode pass 24 bytes not sent
Native LAN Man Samba Samba 3.0.2a-Deb
-Session Setup AndX Response Action 0 1
-Tree Connect AndX Request Pass len 1 24
Password 0x00 24 bytes
-Tree Connext AndX Response
-Negotiate Protocol Request
-Negotiate Protocol Response Security Mode 3 2
-Session Setup AndX Request, This time both sent same length in passwords
User: \stb 0 for ansi and 24 for unicode. Similar package.
-Session Setup AndX Response Action 0 1
-Tree Connect AndX Request This time both sent pass length 1 with pass=0x00
-Tree Connect AndX Response OK Error
STATUS_WRONG_PASSWORD
After getting the error, the cifs client that is working against the samba
in security=share mode, starts to send packages continuously to the samba
server causing a DOS to it.
I don't know what else I can add, if I can do anything to get this stuff
solved, testing, gathering more info, ... just tell me.
Regards...
--
Manty/BestiaTester -> http://manty.net
More information about the linux-cifs-client
mailing list