Has smbclient behavior changed from 2.2.8a to 3.0.0?
Christopher R. Hertel
crh at ubiqx.mn.org
Mon Nov 3 23:27:20 GMT 2003
Um...
Note that you're talking to port 445!
Port 445 doesn't do NetBIOS. No NetBIOS names, no NBT.
Not sure why your system is talking to port 445, but it's the wrong port
for the kind of query you are trying to do.
Could be a bug in the way smbclient tries to connect to a remote host.
Chris -)-----
On Mon, Nov 03, 2003 at 02:56:52PM -0800, David Wuertele wrote:
> Me> When I use 2.2.8a smbclient to enumerate the names known to a LMB,
> Me> it lists all the server names. But when I use 3.0.0 smbclient
> Me> with the exact same command line and exact same smb.conf file, it
> Me> does not report server names. How can I get 3.0.0 to report the
> Me> server names?
>
> I have some more information about the difference between 2.2.8a and
> 3.0.0 smbclient vis-a-vis LMB server enumeration. When I ran
> "smbclient -s /etc/samba/smb.conf -I 192.168.5.211 -L //b1-xp-1" while
> sniffing with ethereal, I discovered that smbclient-3.0.0 is doing an
> enum on the wrong domain name.
>
> My machine's hostname is B1-XP-1 and its worgroup is WG1. But for
> some reason, 3.0.0 smbclient is convinced that its "Domain NetBIOS
> Name" is actually B1-XP-1, and not WG1. Why is that? I'm not sure,
> but it might have something to do with the following packet. This is
> the only time that any domain or workgroup name is returned to 3.0.0
> smbclient, and it must be where it is getting the wrong idea. Why
> would a host with workgroup WG1 return the following to smbclient?
>
> Frame 22 (400 bytes on wire, 400 bytes captured)
> Arrival Time: Nov 3, 2003 14:37:03.194255000
> Time delta from previous packet: 0.002264000 seconds
> Time relative to first packet: 1.430907000 seconds
> Frame Number: 22
> Packet Length: 400 bytes
> Capture Length: 400 bytes
> Ethernet II, Src: 00:50:56:31:01:01, Dst: 00:e0:81:27:66:5b
> Destination: 00:e0:81:27:66:5b (Tyan_Com_27:66:5b)
> Source: 00:50:56:31:01:01 (VMware_31:01:01)
> Type: IP (0x0800)
> Internet Protocol, Src Addr: 192.168.5.211 (192.168.5.211), Dst Addr: 192.168.5.1 (192.168.5.1)
> Version: 4
> Header length: 20 bytes
> Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00)
> 0000 00.. = Differentiated Services Codepoint: Default (0x00)
> .... ..0. = ECN-Capable Transport (ECT): 0
> .... ...0 = ECN-CE: 0
> Total Length: 386
> Identification: 0x0f6c
> Flags: 0x04
> .1.. = Don't fragment: Set
> ..0. = More fragments: Not set
> Fragment offset: 0
> Time to live: 128
> Protocol: TCP (0x06)
> Header checksum: 0x5de5 (correct)
> Source: 192.168.5.211 (192.168.5.211)
> Destination: 192.168.5.1 (192.168.5.1)
> Transmission Control Protocol, Src Port: microsoft-ds (445), Dst Port: 43029 (43029), Seq: 1045027736, Ack: 2373168455, Len: 334
> Source port: microsoft-ds (445)
> Destination port: 43029 (43029)
> Sequence number: 1045027736
> Next sequence number: 1045028070
> Acknowledgement number: 2373168455
> Header length: 32 bytes
> Flags: 0x0018 (PSH, ACK)
> 0... .... = Congestion Window Reduced (CWR): Not set
> .0.. .... = ECN-Echo: Not set
> ..0. .... = Urgent: Not set
> ...1 .... = Acknowledgment: Set
> .... 1... = Push: Set
> .... .0.. = Reset: Not set
> .... ..0. = Syn: Not set
> .... ...0 = Fin: Not set
> Window size: 17177
> Checksum: 0x83ea (correct)
> Options: (12 bytes)
> NOP
> NOP
> Time stamp: tsval 43256, tsecr 43318064
> NetBIOS Session Service
> Message Type: Session message
> Length: 330
> SMB (Server Message Block Protocol)
> SMB Header
> Server Component: SMB
> Response to: 21
> Time from request: 0.002264000 seconds
> SMB Command: Session Setup AndX (0x73)
> NT Status: STATUS_MORE_PROCESSING_REQUIRED (0xc0000016)
> Flags: 0x88
> 1... .... = Request/Response: Message is a response to the client/redirector
> .0.. .... = Notify: Notify client only on open
> ..0. .... = Oplocks: OpLock not requested/granted
> ...0 .... = Canonicalized Pathnames: Pathnames are not canonicalized
> .... 1... = Case Sensitivity: Path names are caseless
> .... ..0. = Receive Buffer Posted: Receive buffer has not been posted
> .... ...0 = Lock and Read: Lock&Read, Write&Unlock are not supported
> Flags2: 0xc801
> 1... .... .... .... = Unicode Strings: Strings are Unicode
> .1.. .... .... .... = Error Code Type: Error codes are NT error codes
> ..0. .... .... .... = Execute-only Reads: Don't permit reads if execute-only
> ...0 .... .... .... = Dfs: Don't resolve pathnames with Dfs
> .... 1... .... .... = Extended Security Negotiation: Extended security negotiation is supported
> .... .... .0.. .... = Long Names Used: Path names in request are not long file names
> .... .... .... .0.. = Security Signatures: Security signatures are not supported
> .... .... .... ..0. = Extended Attributes: Extended attributes are not supported
> .... .... .... ...1 = Long Names Allowed: Long file names are allowed in the response
> Reserved: 000000000000000000000000
> Tree ID: 0
> Process ID: 1506
> User ID: 2048
> Multiplex ID: 2
> Session Setup AndX Response (0x73)
> Word Count (WCT): 4
> AndXCommand: No further commands (0xff)
> Reserved: 00
> AndXOffset: 330
> Action: 0x0000
> .... .... .... ...0 = Guest: Not logged in as GUEST
> Security Blob Length: 213
> Byte Count (BCC): 287
> Security Blob: A181D23081CFA0030A0101A10C060A2B...
> GSS-API
> SPNEGO
> negTokenTarg
> negResult: Accept Incomplete (0x0001)
> supportedMech: 1.3.6.1.4.1.311.2.2.10 (SNMPv2-SMI::enterprises.311.2.2.10) (NTLMSSP - Microsoft NTLM Security Support Provider)
> responseToken
> NTLMSSP
> NTLMSSP identifier: NTLMSSP
> NTLM Message Type: NTLMSSP_CHALLENGE (0x00000002)
> Domain: B1-XP-1
> Length: 14
> Maxlen: 14
> Offset: 48
> Flags: 0x608a0215
> 0... .... .... .... .... .... .... .... = Negotiate 0x80000000: Not set
> .1.. .... .... .... .... .... .... .... = Negotiate Key Exchange: Set
> ..1. .... .... .... .... .... .... .... = Negotiate 128: Set
> ...0 .... .... .... .... .... .... .... = Negotiate 0x10000000: Not set
> .... 0... .... .... .... .... .... .... = Negotiate 0x08000000: Not set
> .... .0.. .... .... .... .... .... .... = Negotiate 0x04000000: Not set
> .... ..0. .... .... .... .... .... .... = Negotiate 0x02000000: Not set
> .... ...0 .... .... .... .... .... .... = Negotiate 0x01000000: Not set
> .... .... 1... .... .... .... .... .... = Negotiate Target Info: Set
> .... .... .0.. .... .... .... .... .... = Negotiate 0x00400000: Not set
> .... .... ..0. .... .... .... .... .... = Negotiate 0x00200000: Not set
> .... .... ...0 .... .... .... .... .... = Negotiate 0x00100000: Not set
> .... .... .... 1... .... .... .... .... = Negotiate NTLM2 key: Set
> .... .... .... .0.. .... .... .... .... = Negotiate Challenge Non NT Session Key: Not set
> .... .... .... ..1. .... .... .... .... = Negotiate Challenge Accept Response: Set
> .... .... .... ...0 .... .... .... .... = Negotiate Challenge Init Response: Not set
> .... .... .... .... 0... .... .... .... = Negotiate Always Sign: Not set
> .... .... .... .... .0.. .... .... .... = Negotiate This is Local Call: Not set
> .... .... .... .... ..0. .... .... .... = Negotiate Workstation Supplied: Not set
> .... .... .... .... ...0 .... .... .... = Negotiate Domain Supplied: Not set
> .... .... .... .... .... 0... .... .... = Negotiate 0x00000800: Not set
> .... .... .... .... .... .0.. .... .... = Negotiate 0x00000400: Not set
> .... .... .... .... .... ..1. .... .... = Negotiate NTLM key: Set
> .... .... .... .... .... ...0 .... .... = Negotiate Netware: Not set
> .... .... .... .... .... .... 0... .... = Negotiate Lan Manager Key: Not set
> .... .... .... .... .... .... .0.. .... = Negotiate Datagram Style: Not set
> .... .... .... .... .... .... ..0. .... = Negotiate Seal: Not set
> .... .... .... .... .... .... ...1 .... = Negotiate Sign: Set
> .... .... .... .... .... .... .... 0... = Request 0x00000008: Not set
> .... .... .... .... .... .... .... .1.. = Request Target: Set
> .... .... .... .... .... .... .... ..0. = Negotiate OEM: Not set
> .... .... .... .... .... .... .... ...1 = Negotiate UNICODE: Set
> NTLM Challenge: 5138E823EDCD8C53
> Reserved: 0000000000000000
> Address List
> Length: 120
> Maxlen: 120
> Offset: 62
> Domain NetBIOS Name: B1-XP-1
> Server NetBIOS Name: B1-XP-1
> Domain DNS Name: b1-XP-1.rokutest
> Server DNS Name: b1-XP-1.rokutest
> Native OS: Windows 5.1
> Native LAN Manager: Windows 2000 LAN Manager
>
--
"Implementing CIFS - the Common Internet FileSystem" ISBN: 013047116X
Samba Team -- http://www.samba.org/ -)----- Christopher R. Hertel
jCIFS Team -- http://jcifs.samba.org/ -)----- ubiqx development, uninq.
ubiqx Team -- http://www.ubiqx.org/ -)----- crh at ubiqx.mn.org
OnLineBook -- http://ubiqx.org/cifs/ -)----- crh at ubiqx.org
More information about the samba-technical
mailing list