Multiple Netlogon Pipes

Andrew Bartlett abartlet at samba.org
Mon Oct 2 21:15:30 GMT 2006


On Fri, 2006-09-29 at 18:11 -0700, Jeremy Allison wrote:
> On Fri, Sep 29, 2006 at 04:52:25PM -0700, John Ackart wrote:
> > I have an interesting problem.
> > 
> > I put together some code that executes in the following sequence.
> > 
> > 1. Create a netlogon pipe 1.
> > 2. Send a samlogon request on pipe 1. (SUCCESS)
> > 3. Create a netlogon pipe 2.
> > 4. Send a samlogon request on pipe 2. (SUCCESS)
> > 5. Send a samlogon request on pipe 1. (FAIL)
> > 6. Send a samlogon request on pipe 2. (FAIL)
> > 
> > samlogon requests 2 and 4 succeed. But 5 and 6 fail with 
> > NT_STATUS_ACCESS_DENIED.
> > 
> > The netlogon logs on the Windows Server 2003 show that it uses the 
> > session key generated for the pipe 2 for samlogon request 5 even though 
> > it was sent on pipe 1. And of course request 6 fails because the client 
> > messes up the credential chain because of the unexpected behavior in 
> > request 5.
> > 
> > Is this a limitation of the protocol?
> > 
> > If anyone is interested I can send the code and the logs.
> 
> What server are you running against ? Is this against a W2K3
> server ?
> 
> I'd be very interested in the code, we might add this to
> our torture tester if it's Samba code.

The RPC-SCHANNEL and RPC-NETLOGON tests should test this behaviour out.

The clear behaviour is that the session key and validator state is
shared between all connections, keyed on the netbios name supplied.

Samba4's server now hits the shared ldb per operation to get this right.

Andrew Bartlett

-- 
Andrew Bartlett                                http://samba.org/~abartlet/
Authentication Developer, Samba Team           http://samba.org
Samba Developer, Red Hat Inc.                  http://redhat.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba-technical/attachments/20061003/9a618605/attachment.bin


More information about the samba-technical mailing list