[Samba] net rpc rights list 'accounts' works, kinda, sorta?
pisymbol .
pisymbol at gmail.com
Wed Oct 16 13:01:45 MDT 2013
Hello all:
On Fedora 13 but tried this with binaries built off of trunk as well:
$ sudo bin/net -U Administrator%<somepass> -S <server DNS address> rpc
rights list accounts
NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS
SeNetworkLogonRight
NT AUTHORITY\SERVICE
SeImpersonatePrivilege
SeCreateGlobalPrivilege
...
S-1-5-21-4110185449-3833660826-895226858-1184
tdb(__NULL__): tdb_open_ex: called with name == NULL
$ echo $?
255
Note, the 3.5.8-75 binary does the same thing sans "tdb" noise.
But if I do it a second time, it just works and returns 0.
Looking at the TCP dump I see that in the failure case I get a
"Trans Response, FID: 0x8003, Error: STATUS_PIPE_BROKEN"
(Wireshark output from the PCAP dump)
Anyone have a clue on why this kinda, sorta works?
The PDC is running 2003 SP2.
Searching the list yielded very little fruit.
-aps
More information about the samba
mailing list