[Samba] Operation not permitted mounting samba-share via cifs
Christian Anton
mail at christiananton.de
Tue Feb 8 23:27:45 GMT 2005
Christian Anton wrote:
> Hi everybody,
>
> I want to use my samba-shared Homedirectory from my Linux-Server on my
> Linux-workstation. I was using smbfs until now, but since i upgraded
> my hardware i'm not any more able to use smbfs, i get error-messages
> (timeouts) in the kernel logs and I/O-Errors on the console. Having
> this problems i read about cifs and that's much better, nicer, sexyer
> and faster than smbfs.
> The two public-accesible shares runs very nice and very performant,
> much better than ever. I'm mounting them as user 'chris' having the
> following lines in my /etc/fstab:
> //serv01.kdorf.local/Fileman /mnt/Filemanagement cifs
> user,noauto,guest,uid=501,gid=100 0 0
> //serv01.kdorf.local/Ablage /mnt/Ablage cifs
> user,noauto,guest,uid=501,gid=100 0 0
>
> Now i'm wanting to mount //serv01/chris on /mnt/chris on my machine,
> also using cifs.
> I'm trying as root with the following command:
> mount -t cifs //serv01/chris /mnt/temp -o
> user=chris,password=<password>,uid=501,gid=100
> and get:
> mount error 1 = Operation not permitted
> Refer to the mount.cifs(8) manual page (e.g.man mount.cifs)
>
> The samba-log looks something like this:
> ------------------------ schnipp ---------------------------
> [2005/02/07 17:05:27, 3] smbd/oplock.c:init_oplocks(1302)
> open_oplock_ipc: opening loopback UDP socket.
> [2005/02/07 17:05:27, 3]
> smbd/oplock_linux.c:linux_init_kernel_oplocks(303)
> Linux kernel oplocks enabled
> [2005/02/07 17:05:27, 3] smbd/oplock.c:init_oplocks(1333)
> open_oplock ipc: pid = 22435, global_oplock_port = 33239
> [2005/02/07 17:05:27, 3] smbd/process.c:process_smb(1092)
> Transaction 0 of length 51
> [2005/02/07 17:05:27, 3] smbd/process.c:switch_message(887)
> switch message SMBnegprot (pid 22435) conn 0x0
> [2005/02/07 17:05:27, 3] smbd/sec_ctx.c:set_sec_ctx(288)
> setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
> [2005/02/07 17:05:27, 3] smbd/negprot.c:reply_negprot(457)
> Requested protocol [NT LM 0.12]
> [2005/02/07 17:05:27, 3] smbd/negprot.c:reply_nt1(323)
> not using SPNEGO
> [2005/02/07 17:05:27, 3] smbd/negprot.c:reply_negprot(545)
> Selected protocol NT LM 0.12
> [2005/02/07 17:05:27, 3] smbd/process.c:process_smb(1092)
> Transaction 1 of length 242
> [2005/02/07 17:05:27, 3] smbd/process.c:switch_message(887)
> switch message SMBsesssetupX (pid 22435) conn 0x0
> [2005/02/07 17:05:27, 3] smbd/sec_ctx.c:set_sec_ctx(288)
> setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
> [2005/02/07 17:05:27, 3] smbd/sesssetup.c:reply_sesssetup_and_X(655)
> wct=13 flg2=0xc001
> [2005/02/07 17:05:27, 3] smbd/sesssetup.c:reply_sesssetup_and_X(789)
> Domain=[] NativeOS=[Linux version 2.6.10-gentoo-r7]
> NativeLanMan=[CIFS VFS Client for Linux] PrimaryDomain=[]
> [2005/02/07 17:05:27, 2] smbd/sesssetup.c:setup_new_vc_session(608)
> setup_new_vc_session: New VC == 0, if NT4.x compatible we would close
> all old resources.
> [2005/02/07 17:05:27, 3] smbd/sesssetup.c:reply_sesssetup_and_X(804)
> sesssetupX:name=[]\[chris]@[192.168.5.12]
> [2005/02/07 17:05:27, 3] smbd/sesssetup.c:check_guest_password(116)
> Got anonymous request
> [2005/02/07 17:05:27, 3] auth/auth.c:check_ntlm_password(219)
> check_ntlm_password: Checking password for unmapped user []\[]@[]
> with the new password interface
> [2005/02/07 17:05:27, 3] auth/auth.c:check_ntlm_password(222)
> check_ntlm_password: mapped user is: []\[]@[]
> [2005/02/07 17:05:27, 3] smbd/sec_ctx.c:push_sec_ctx(256)
> push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
> [2005/02/07 17:05:27, 3] smbd/uid.c:push_conn_ctx(365)
> push_conn_ctx(0) : conn_ctx_stack_ndx = 0
> [2005/02/07 17:05:27, 3] smbd/sec_ctx.c:set_sec_ctx(288)
> setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
> [2005/02/07 17:05:27, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
> pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
> [2005/02/07 17:05:27, 3] smbd/sec_ctx.c:push_sec_ctx(256)
> push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
> [2005/02/07 17:05:27, 3] smbd/uid.c:push_conn_ctx(365)
> push_conn_ctx(0) : conn_ctx_stack_ndx = 0
> [2005/02/07 17:05:27, 3] smbd/sec_ctx.c:set_sec_ctx(288)
> setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
> [2005/02/07 17:05:27, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
> pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
> [2005/02/07 17:05:27, 3] smbd/sec_ctx.c:push_sec_ctx(256)
> push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
> [2005/02/07 17:05:27, 3] smbd/uid.c:push_conn_ctx(365)
> push_conn_ctx(0) : conn_ctx_stack_ndx = 0
> [2005/02/07 17:05:27, 3] smbd/sec_ctx.c:set_sec_ctx(288)
> setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
> [2005/02/07 17:05:27, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
> pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
> [2005/02/07 17:05:27, 3] auth/auth.c:check_ntlm_password(268)
> check_ntlm_password: guest authentication for user [] succeeded
> [2005/02/07 17:05:27, 3] smbd/process.c:process_smb(1092)
> Transaction 2 of length 84
> [2005/02/07 17:05:27, 3] smbd/process.c:switch_message(887)
> switch message SMBtconX (pid 22435) conn 0x0
> [2005/02/07 17:05:27, 3] smbd/sec_ctx.c:set_sec_ctx(288)
> setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
> [2005/02/07 17:05:27, 3] smbd/service.c:find_service(145)
> checking for home directory chris gave /home/chris
> [2005/02/07 17:05:27, 3] param/loadparm.c:lp_add_home(2333)
> adding home's share [chris] for user 'chris' at '/home/chris'
> [2005/02/07 17:05:27, 3] auth/auth.c:check_ntlm_password(219)
> check_ntlm_password: Checking password for unmapped user
> [KARLSDORF]\[chris]@[192.168.5.12] with the new password interface
> [2005/02/07 17:05:27, 3] auth/auth.c:check_ntlm_password(222)
> check_ntlm_password: mapped user is: [SERV01]\[chris]@[192.168.5.12]
> [2005/02/07 17:05:27, 3] smbd/sec_ctx.c:push_sec_ctx(256)
> push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
> [2005/02/07 17:05:27, 3] smbd/uid.c:push_conn_ctx(365)
> push_conn_ctx(0) : conn_ctx_stack_ndx = 0
> [2005/02/07 17:05:27, 3] smbd/sec_ctx.c:set_sec_ctx(288)
> setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
> [2005/02/07 17:05:27, 3] smbd/sec_ctx.c:push_sec_ctx(256)
> push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
> [2005/02/07 17:05:27, 3] smbd/uid.c:push_conn_ctx(365)
> push_conn_ctx(0) : conn_ctx_stack_ndx = 1
> [2005/02/07 17:05:27, 3] smbd/sec_ctx.c:set_sec_ctx(288)
> setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
> [2005/02/07 17:05:27, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
> pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
> [2005/02/07 17:05:27, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
> pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
> [2005/02/07 17:05:27, 3] libsmb/ntlm_check.c:ntlm_password_check(451)
> ntlm_password_check: LM password, NT MD4 password in LM field and LMv2
> failed for user chris
> [2005/02/07 17:05:27, 3] smbd/sec_ctx.c:push_sec_ctx(256)
> push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
> [2005/02/07 17:05:27, 3] smbd/uid.c:push_conn_ctx(365)
> push_conn_ctx(0) : conn_ctx_stack_ndx = 0
> [2005/02/07 17:05:27, 3] smbd/sec_ctx.c:set_sec_ctx(288)
> setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
> [2005/02/07 17:05:27, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
> pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
> [2005/02/07 17:05:27, 2] auth/auth.c:check_ntlm_password(312)
> check_ntlm_password: Authentication for user [chris] -> [chris]
> FAILED with error NT_STATUS_WRONG_PASSWORD
> [2005/02/07 17:05:27, 2] smbd/service.c:make_connection_snum(333)
> Invalid username/password for [chris]
> [2005/02/07 17:05:27, 3] smbd/error.c:error_packet(105)
> error string = Datei oder Verzeichnis nicht gefunden
> [2005/02/07 17:05:27, 3] smbd/error.c:error_packet(129)
> error packet at smbd/reply.c(416) cmd=117 (SMBtconX)
> NT_STATUS_WRONG_PASSWORD
> [2005/02/07 17:05:27, 3] smbd/process.c:process_smb(1092)
> Transaction 3 of length 43
> [2005/02/07 17:05:27, 3] smbd/process.c:switch_message(887)
> switch message SMBulogoffX (pid 22435) conn 0x0
> [2005/02/07 17:05:27, 3] smbd/sec_ctx.c:set_sec_ctx(288)
> setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
> [2005/02/07 17:05:27, 3] smbd/reply.c:reply_ulogoffX(1244)
> ulogoff, vuser id 0 does not map to user.
> [2005/02/07 17:05:27, 3] smbd/reply.c:reply_ulogoffX(1255)
> ulogoffX vuid=0
> [2005/02/07 17:05:27, 3] smbd/process.c:timeout_processing(1332)
> timeout_processing: End of file from client (client has disconnected).
> [2005/02/07 17:05:27, 3] smbd/sec_ctx.c:set_sec_ctx(288)
> setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
> [2005/02/07 17:05:27, 2] smbd/server.c:exit_server(571)
> Closing connections
> [2005/02/07 17:05:27, 3] smbd/connection.c:yield_connection(69)
> Yielding connection to
> [2005/02/07 17:05:27, 3] smbd/connection.c:yield_connection(76)
> yield_connection: tdb_delete for name failed with error Record does
> not exist.
> [2005/02/07 17:05:27, 3] smbd/server.c:exit_server(614)
> Server exit (normal exit)
> ------------------------ schnapp ---------------------------
>
> my smb.conf:
> [global]
>
> ;syslog only = yes
> workgroup = KARLSDORF
> netbios name = serv01
> server string = Samba Server %v
> log file = /var/log/samba3/log.%m
> #max log size = 5000
> unix extensions = no
> log level = 3
> map to guest = nobody
> security = share
> password level = 8
> username level = 8
> encrypt passwords = yes
> smb passwd file = /etc/samba/private/smbpasswd
> socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
> socket address = 192.168.5.1
> interfaces = 192.168.5.0/24 127.0.0.0/8
> local master = yes
> os level = 33
> domain master = yes
> preferred master = yes
> domain logons = no
> passdb backend = smbpasswd guest
> wins support = yes
> dns proxy = yes
> preserve case = yes
> short preserve case = yes
> default case = lower
> ; case sensitive = no
> dos charset = 850
> unix charset = ISO8859-15
> ;ntlm auth = no
> ;lanman auth = no
>
> [homes]
> comment = Home Directories
> browseable = no
> writable = yes
> hide files = /.*/
> hide special files = yes
>
> [Fileman]
> path = /mnt/Filemanagement
> guest only = yes
> public = yes
> writable = yes
> printable = no
> force directory mode = 0777
> force create mode = 0666
>
> [...]
>
> I was not able to mount via cifs, but using smbfs it runs very nice on
> other computers.
>
> I'm using an actual Gentoo-Linux on both machines, running on the
> server a kernel 2.4.28 with samba-3.0.10 and on the client kernel
> 2.6.10 with samba-3.0.11. I've tried with different kernel-versions on
> the client but no changes.
>
> I've been googleing around and searching this mailing list and the
> gentoo-forums, i did find some posts with the same problem but no one
> with any solution. It would be great if someone could give me some
> hint how to do to mount password-authenticated shares via cifs.
>
> Thank you very much...
>
>
> Chris
Hi folks,
i found the solution. The authentication using cifs does not work using
"security=share" in server's /etc/smb.conf.
greets
Christian
More information about the samba
mailing list