Possibly a security flaw...

Panagiotis Malakoudis pmal at space.gr
Fri Jul 23 06:35:25 GMT 1999


A summary of my problem,

I had wrong UIDs for a user (eg pmal) between the /etc/passwd file and the
smbpasswd file.
When I was trying to loggin from a couple of machines running either win nt
or win 98 I was reading in the log files that the loggin could not be
completed because the UID were wrong but there were instances were I could
loggin from another computer with the same username.
I really cannot say what are the differences between the various compter
systems and why some of them didn't reply "Bad password" as they should.

Is this a bug? Was it fixed somehow?

-------------------------------------
Malakoudis Panagiotis
System Administrator
Space Hellas S.A.

E-mail: pmal at space.gr
-------------------------------------

----- Original Message -----
From: Chris Tooley <ctooley at joslyn.org>
To: 'Panagiotis Malakoudis' <pmal at space.gr>
Sent: Thursday, July 22, 1999 5:00 PM
Subject: RE: Weird !


> Yes, and there is a registry edit for NT do the same thing.  Did you edit
the NT registry of the box you are on able to log in from?
>
> -----Original Message-----
> From: Panagiotis Malakoudis [SMTP:pmal at space.gr]
> Sent: Thursday, July 22, 1999 1:11 AM
> To: Chris Tooley
> Subject: Re: Weird !
>
> Yeah I do. Windows 98 only send plaintext password (if I'm not mistaken)
if
> you alter their registry...
> Check out the following...
>
> [1999/07/22 08:01:56, 1] smbd/password.c:pass_check_smb(504)
>   Couldn't find user 'nobody' in smb_passwd file.
>
>
> ----- Original Message -----
> From: Chris Tooley <ctooley at joslyn.org>
> To: 'Panagiotis Malakoudis' <pmal at space.gr>
> Sent: Wednesday, July 21, 1999 7:34 PM
> Subject: RE: Weird !
>
>
> > Have you got encrypted passwords enabled on your Samba Server's
smb.conf?
> >
> > If so is you Win98 machine sending plaintext passwords?
> >
> > Chris
> >
> > -----Original Message-----
> > From: Panagiotis Malakoudis [SMTP:pmal at space.gr]
> > Sent: Wednesday, July 21, 1999 11:11 AM
> > To: Chris Tooley
> > Subject: Re: Weird !
> >
> > How come I can loggin from MY nt server  box? I'm going bananas here...
> > I use the same username is a couple of PC (with either win 98 or winnt)
> and
> > I can connect whereas by using another bunch of computers I cannot...
> > Any ideas?
> >
> > ----- Original Message -----
> > From: Chris Tooley <ctooley at joslyn.org>
> > To: <pmal at space.gr>
> > Sent: Wednesday, July 21, 1999 6:36 PM
> > Subject: RE: Weird !
> >
> >
> > > Sounds like a password encryption problem.
> > >
> > > -----Original Message-----
> > > From: Panagiotis Malakoudis [SMTP:pmal at space.gr]
> > > Sent: Wednesday, July 21, 1999 8:22 AM
> > > To: Multiple recipients of list SAMBA-NTDOM
> > > Subject: Re: Weird !
> > >
> > > Now I have other users not being able to loggin at all using their
> > username
> > > and password. I installed samba 2.0.5 and I use share level security.
> > > For instance I have a user called asar and allthough I can loggin
using
> > his
> > > account from my nt server he cannot because samba cannot recognise the
> > > password. I tryied to loogin from his machine using my account but I
got
> > the
> > > same result.
> > > His network configuration is correct. He can actually see the public
> > shared
> > > directories but he cannot login to his home directory from a couple of
> PC
> > in
> > > his department.
> > >
> > > ----- Original Message -----
> > > From: Chris Tooley <ctooley at joslyn.org>
> > > To: Multiple recipients of list SAMBA-NTDOM <samba-ntdom at samba.org>
> > > Sent: Wednesday, July 21, 1999 4:03 PM
> > > Subject: RE: Weird !
> > >
> > >
> > > > This is similar to the problem that I had with Windows 95 clients.
> > > >
> > > > -----Original Message-----
> > > > From: Panagiotis Malakoudis [SMTP:pmal at space.gr]
> > > > Sent: Wednesday, July 21, 1999 1:18 AM
> > > > To: Multiple recipients of list SAMBA-NTDOM
> > > > Subject: Weird !
> > > >
> > > > I'm posting this message in case there is someone that had this
> problem
> > in
> > > > the past.
> > > > I had complaints from a number of users in my network that they
could
> > not
> > > > loggin into their home directory in samba.
> > > > Although some of my users are recognized from samba, others are not.
> > Check
> > > > out the following:
> > > >
> > > > # smbstatus
> > > >
> > > > Samba version 2.0.4b
> > > > Service      uid      gid      pid     machine
> > > > ----------------------------------------------
> > > > User Space   kzou     admin     1801   midnight (10.0.2.4) Sun Jul
21
> > > > 08:15:33 1996
> > > > File Serve   nobody   users     1803   scostic  (10.0.6.3) Sun Jul
21
> > > > 08:16:07 1996
> > > >
> > > > Locked files:
> > > > Pid    DenyMode   R/W        Oplock           Name
> > > > --------------------------------------------------
> > > >
> > > > Share mode memory usage (bytes):
> > > >    1047480(99%) free + 944(0%) used + 152(0%) overhead =
1048576(100%)
> > > total
> > > > #
> > > >
> > > > Some of the users that are not recognized are using windows 98.
others
> > are
> > > > using win nt workstation or server...
> > > >
> > > > Any ideas?
> > > >
> > > > -------------------------------------
> > > > Malakoudis Panagiotis
> > > > System Administrator
> > > > Space Hellas S.A.
> > > >
> > > > E-mail: pmal at space.gr
> > > > -------------------------------------



More information about the samba mailing list