From: Alexey Khobov <alex@ormb.ru>
To: community@altlinux.ru
Subject: [Comm] Samba 2.2.8 as PDC - logon problem
Date: Wed, 03 Dec 2003 21:57:47 +0300
Message-ID: <3FCE322B.7000905@ormb.ru> (raw)
Привет!
Помогите разобраться, а то уже голова кругом идет.
Имею АЛМ2.2 со всеми фиксами (не осизифленный)
Стоит Самба 2.2.8:
[root@mnsn samba]# rpm -qa | grep samba
samba-common-2.2.8-alt2
samba-client-cups-2.2.8-alt2
samba-doc-2.2.8-alt2
samba-2.2.8-alt2
samba-client-2.2.8-alt2
samba-swat-2.2.8-alt2
[root@mnsn samba]#
Кусочек ее конфига:
[global]
client code page = 866
workgroup = DOMAINNAME
netbios name = MNSN
server string = Samba server on %h (v. %v)
encrypt passwords = Yes
log file = /var/log/samba/log.%m
log level = 4
max log size = 50
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
printcap name = lpstat
character set = KOI8-R
domain logons = Yes
os level = 65
domain master = Yes
local master = Yes
dns proxy = No
use sendfile = Yes
printing = cups
[netlogon]
comment = Network Logon Service
path = /var/lib/samba/netlogon
guest ok = Yes
[Profiles]
path = /var/lib/samba/profiles
guest ok = Yes
browseable = No
<skip>
Выдержка из smbpasswd:
[root@mnsn samba]# cat smbpasswd | grep vmertz
vmertz:551:0B94B61C42DA603EAAD3B435B51404EE:C8B6EDC6B7063D6E6BEEE036164EC793:[UX ]:LCT-3FCE35B1:
[root@mnsn samba]#
и из /etc/passwd:
[root@mnsn samba]# cat /etc/passwd | grep vmertz
vmertz:x:551:100::/home/vmertz:/bin/false
[root@mnsn samba]#
Пытаюсь залогинится в домен с Win98, но получаю в логе самбы:
<skip>
[2003/12/03 22:12:56, 3] smbd/process.c:process_smb(846)
Transaction 1 of length 158
[2003/12/03 22:12:56, 3] smbd/process.c:switch_message(685)
switch message SMBnegprot (pid 6459)
[2003/12/03 22:12:56, 3] smbd/sec_ctx.c:set_sec_ctx(329)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2003/12/03 22:12:56, 3] smbd/negprot.c:reply_negprot(342)
Requested protocol [PC NETWORK PROGRAM 1.0]
[2003/12/03 22:12:56, 3] smbd/negprot.c:reply_negprot(342)
Requested protocol [MICROSOFT NETWORKS 3.0]
[2003/12/03 22:12:56, 3] smbd/negprot.c:reply_negprot(342)
Requested protocol [DOS LM1.2X002]
[2003/12/03 22:12:56, 3] smbd/negprot.c:reply_negprot(342)
Requested protocol [DOS LANMAN2.1]
[2003/12/03 22:12:56, 3] smbd/negprot.c:reply_negprot(342)
Requested protocol [Windows for Workgroups 3.1a]
[2003/12/03 22:12:56, 3] smbd/negprot.c:reply_negprot(342)
Requested protocol [NT LM 0.12]
[2003/12/03 22:12:56, 3] smbd/negprot.c:reply_negprot(426)
Selected protocol NT LM 0.12
[2003/12/03 22:12:56, 3] smbd/process.c:process_smb(846)
Transaction 2 of length 151
[2003/12/03 22:12:56, 3] smbd/process.c:switch_message(685)
switch message SMBsesssetupX (pid 6459)
[2003/12/03 22:12:56, 3] smbd/sec_ctx.c:set_sec_ctx(329)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2003/12/03 22:12:56, 3] smbd/reply.c:reply_sesssetup_and_X(880)
Domain=[] NativeOS=[Windows 4.0] NativeLanMan=[Windows 4.0]
[2003/12/03 22:12:56, 3] smbd/reply.c:reply_sesssetup_and_X(890)
sesssetupX:name=[VMERTZ]
[2003/12/03 22:12:58, 3] smbd/reply.c:reply_sesssetup_and_X(954)
Using unix username \VMERTZ
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
[2003/12/03 22:12:58, 2] smbd/reply.c:reply_sesssetup_and_X(1007)
Defaulting to Lanman password for \vmertz
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
[2003/12/03 22:12:58, 1] smbd/password.c:pass_check_smb(545)
Couldn't find user '\vmertz' in passdb.
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
[2003/12/03 22:12:58, 1] smbd/reply.c:reply_sesssetup_and_X(1023)
Rejecting user '\vmertz': authentication failed
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
[2003/12/03 22:12:58, 3] smbd/error.c:error_packet(94)
error string = No such file or directory
[2003/12/03 22:12:58, 3] smbd/error.c:error_packet(129)
error packet at smbd/reply.c(1025) cmd=115 (SMBsesssetupX) eclass=2 ecode=2
[2003/12/03 22:12:58, 3] smbd/process.c:timeout_processing(1066)
end of file from client
<skip>
Вопрос - откуда взялся слэш в начале имени пользователя?
Причем если добавить этот слэш в начале имени в файле smbpasswd, то пользователь входит в домен, но не может замонтировать шары, так как уже использует имя пользователя без слэша (убераю - нормально работает в домене, но повторный логон в домен не происходит - опять имя со слэшем в начале).
Причем из smbclient все работает замечательно.
IMHO, очень похоже на баг. У кого-нибудь еще есть подобные проблемы?
--
С уважением,
Хобов Алексей Владимирович
next reply other threads:[~2003-12-03 18:57 UTC|newest]
Thread overview: 7+ messages / expand[flat|nested] mbox.gz Atom feed top
2003-12-03 18:57 Alexey Khobov [this message]
2003-12-04 6:42 ` Maxim.Savrilov
2003-12-04 7:43 ` Re[2]: " aek
2003-12-04 8:34 ` Alexey Khobov
2003-12-04 8:50 ` Felix
2003-12-04 9:18 ` Alexey Khobov
2003-12-04 9:48 ` Alexander Bokovoy
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=3FCE322B.7000905@ormb.ru \
--to=alex@ormb.ru \
--cc=community@altlinux.ru \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
ALT Linux Community general discussions
This inbox may be cloned and mirrored by anyone:
git clone --mirror http://lore.altlinux.org/community/0 community/git/0.git
# If you have public-inbox 1.1+ installed, you may
# initialize and index your mirror using the following commands:
public-inbox-init -V2 community community/ http://lore.altlinux.org/community \
mandrake-russian@linuxteam.iplabs.ru community@lists.altlinux.org community@lists.altlinux.ru community@lists.altlinux.com
public-inbox-index community
Example config snippet for mirrors.
Newsgroup available over NNTP:
nntp://lore.altlinux.org/org.altlinux.lists.community
AGPL code for this site: git clone https://public-inbox.org/public-inbox.git