Take ownership problem in NT - lsa_lookup_names

[Jim McDonough]

Apologies if this comes as a dup.  We've had some network problems lately,
but I didn't see this note hit the list yesterday when I sent it.

I was trying to reproduce the WIn9x take ownership problem, where a user
without permission can take ownership of a file on 2.2 with ACLs (I can
reproduce it) to get some traces and captures, so I thought I would try it
on NT.  My samba server has a fairly recent 2.2 from cvs, with winbind.
The PDC is also 2.2.

What I ended up with is the error:
Unable to take ownership because the account "SAMBADOMAIN\jmcd##$#$@$"
could not be accessed on the remote machine due to the following error:
The account could not be found.

The symbols following the userid are random junk.  Different ones each
time, often just boxes.

Along with this is the capture:
NT -> SAMBA: LSA 0x2D LSA_GET_UNK_CONNUSER
SAMBA->NT: user=jmcd domain=SAMBADOMAIN
NT -> SAMBA: LSA 0xE LSA_LOOKUP_NAMES    SAMBADOMAIN\jmcd##$#$@$

Anyone seen this before?

Capture is available if anyone is interested.  The format of the 0x2D
response looks good to me...


----------------------------
Jim McDonough
IBM Linux Technology Center
6 Minuteman Drive
Scarborough, ME 04074
USA

jmcd at us.ibm.com

Phone: (207) 885-5565
IBM tie-line: 776-9984