NetBIOS name server protocol spoofing

Peter Polkinghorne Peter.Polkinghorne at
Fri Aug 4 15:15:21 GMT 2000

Summary: machines can be asked to give up NetBios names, by means of
name conflict and name release requests.

I did have a quick look at the code, but apart from no obvious ref to
conflict packets could not determine.
Is Samba vulnerable to this problem?

Here is the Microsoft take on it (very carefully worded):

Their fix is to have a registry setting to ignore such packets.  They point
out that this is potentially dangerous.  I do not think this is a big
issue - it is just another DoS attack.

| Peter Polkinghorne, Computer Centre, Brunel University, Uxbridge, UB8 3PH,|
| Peter.Polkinghorne at   +44 1895 274000 x2561       UK          |

More information about the samba-technical mailing list