[Samba] What in samba 4.1 prevents a '/' share?
David C. Rankin
drankinatty at suddenlinkmail.com
Mon Jan 6 23:23:17 MST 2014
On 01/06/2014 03:01 PM, David C. Rankin wrote:
> So I'm just stuck. I don't know what in the heck changed, but something has
> definitely changed. Maybe someone else following this thread has some additional
> idea (hint, hint Bartlett, Allison, Terpstra, Tridgell.. anybody??)
>
I have captured tcpdump traffic during the mount attempts and they point to
smb issuing the error, but I'm not that great at reading packet contents, so I'm
not entirely sure. But basically, after successful AndX session setup (Tree
Connect AndX Request, Path: \\phoinix\config), the request for \\phoinix\config
is made and it is found successfully by the server, but then the server response
with (Tree Connect AndX Response, Error: STATUS_ACCESS_DENIED) The full ASCII
dump of the packet dissection for the STATUS_ACCESS_DENIED packet is:
No. Time Source Destination Protocol Length Info
25 3.487933 192.168.7.16 192.168.7.124 SMB 105
Tree Connect AndX Response, Error: STATUS_ACCESS_DENIED
Frame 25: 105 bytes on wire (840 bits), 105 bytes captured (840 bits)
WTAP_ENCAP: 1
Arrival Time: Jan 6, 2014 17:45:50.826685000 CST
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1389051950.826685000 seconds
[Time delta from previous captured frame: 0.001539000 seconds]
[Time delta from previous displayed frame: 0.001539000 seconds]
[Time since reference or first frame: 3.487933000 seconds]
Frame Number: 25
Frame Length: 105 bytes (840 bits)
Capture Length: 105 bytes (840 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: eth:ip:tcp:nbss:smb]
[Coloring Rule Name: SMB]
[Coloring Rule String: smb || nbss || nbns || nbipx || ipxsap || netbios]
Ethernet II, Src: Micro-St_1a:8c:fa (00:21:85:1a:8c:fa), Dst: Dell_22:50:08
(00:11:43:22:50:08)
Destination: Dell_22:50:08 (00:11:43:22:50:08)
Address: Dell_22:50:08 (00:11:43:22:50:08)
.... ..0. .... .... .... .... = LG bit: Globally unique address (factory
default)
.... ...0 .... .... .... .... = IG bit: Individual address (unicast)
Source: Micro-St_1a:8c:fa (00:21:85:1a:8c:fa)
Address: Micro-St_1a:8c:fa (00:21:85:1a:8c:fa)
.... ..0. .... .... .... .... = LG bit: Globally unique address (factory
default)
.... ...0 .... .... .... .... = IG bit: Individual address (unicast)
Type: IP (0x0800)
Internet Protocol Version 4, Src: 192.168.7.16 (192.168.7.16), Dst:
192.168.7.124 (192.168.7.124)
Version: 4
Header length: 20 bytes
Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00: Not-ECT
(Not ECN-Capable Transport))
0000 00.. = Differentiated Services Codepoint: Default (0x00)
.... ..00 = Explicit Congestion Notification: Not-ECT (Not ECN-Capable
Transport) (0x00)
Total Length: 91
Identification: 0x0398 (920)
Flags: 0x02 (Don't Fragment)
0... .... = Reserved bit: Not set
.1.. .... = Don't fragment: Set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: TCP (6)
Header checksum: 0xa728 [correct]
[Good: True]
[Bad: False]
Source: 192.168.7.16 (192.168.7.16)
Destination: 192.168.7.124 (192.168.7.124)
[Source GeoIP: Unknown]
[Destination GeoIP: Unknown]
Transmission Control Protocol, Src Port: microsoft-ds (445), Dst Port: 50813
(50813), Seq: 210, Ack: 445, Len: 39
Source port: microsoft-ds (445)
Destination port: 50813 (50813)
[Stream index: 2]
Sequence number: 210 (relative sequence number)
[Next sequence number: 249 (relative sequence number)]
Acknowledgment number: 445 (relative ack number)
Header length: 32 bytes
Flags: 0x018 (PSH, ACK)
000. .... .... = Reserved: Not set
...0 .... .... = Nonce: Not set
.... 0... .... = Congestion Window Reduced (CWR): Not set
.... .0.. .... = ECN-Echo: Not set
.... ..0. .... = Urgent: Not set
.... ...1 .... = Acknowledgment: Set
.... .... 1... = Push: Set
.... .... .0.. = Reset: Not set
.... .... ..0. = Syn: Not set
.... .... ...0 = Fin: Not set
Window size value: 235
[Calculated window size: 30080]
[Window size scaling factor: 128]
Checksum: 0x5220 [validation disabled]
[Good Checksum: False]
[Bad Checksum: False]
Options: (12 bytes), No-Operation (NOP), No-Operation (NOP), Timestamps
No-Operation (NOP)
Type: 1
0... .... = Copy on fragmentation: No
.00. .... = Class: Control (0)
...0 0001 = Number: No-Operation (NOP) (1)
No-Operation (NOP)
Type: 1
0... .... = Copy on fragmentation: No
.00. .... = Class: Control (0)
...0 0001 = Number: No-Operation (NOP) (1)
Timestamps: TSval 290109681, TSecr 203763093
Kind: Timestamp (8)
Length: 10
Timestamp value: 290109681
Timestamp echo reply: 203763093
[SEQ/ACK analysis]
[This is an ACK to the segment in frame: 24]
[The RTT to ACK the segment was: 0.001539000 seconds]
[Bytes in flight: 39]
NetBIOS Session Service
Message Type: Session message (0x00)
Length: 35
SMB (Server Message Block Protocol)
SMB Header
Server Component: SMB
[Response to: 24]
[Time from request: 0.001539000 seconds]
SMB Command: Tree Connect AndX (0x75)
NT Status: STATUS_ACCESS_DENIED (0xc0000022)
Flags: 0x80
1... .... = Request/Response: Message is a response to the
client/redirector
.0.. .... = Notify: Notify client only on open
..0. .... = Oplocks: OpLock not requested/granted
...0 .... = Canonicalized Pathnames: Pathnames are not canonicalized
.... 0... = Case Sensitivity: Path names are case sensitive
.... ..0. = Receive Buffer Posted: Receive buffer has not been posted
.... ...0 = Lock and Read: Lock&Read, Write&Unlock are not supported
Flags2: 0xc003
1... .... .... .... = Unicode Strings: Strings are Unicode
.1.. .... .... .... = Error Code Type: Error codes are NT error codes
..0. .... .... .... = Execute-only Reads: Don't permit reads if
execute-only
...0 .... .... .... = Dfs: Don't resolve pathnames with Dfs
.... 0... .... .... = Extended Security Negotiation: Extended
security negotiation is not supported
.... .0.. .... .... = Reparse Path: The request does not use a @GMT
reparse path
.... .... .0.. .... = Long Names Used: Path names in request are not
long file names
.... .... ...0 .... = Security Signatures Required: Security
signatures are not required
.... .... .... 0... = Compressed: Compression is not requested
.... .... .... .0.. = Security Signatures: Security signatures are
not supported
.... .... .... ..1. = Extended Attributes: Extended attributes are
supported
.... .... .... ...1 = Long Names Allowed: Long file names are
allowed in the response
Process ID High: 0
Signature: 0000000000000000
Reserved: 0000
Tree ID: 0 (\\phoinix\config)
[Path: \\phoinix\config]
[Mapped in: 25]
Process ID: 1996
User ID: 14822
Multiplex ID: 3
Tree Connect AndX Response (0x75)
Word Count (WCT): 0
Byte Count (BCC): 0
--
David C. Rankin, J.D.,P.E.
More information about the samba
mailing list