samba - May 2017 - samba-4.5.x Doesn't work against Anonymous login to windows

Hi List,

I have samba-4.1.x and samba-4.5.x.
Windows 7 has an user with no password (anonymous login allowed).
I am trying to connect to windows 7 from smbc calls.
call smbc_opendir() with username and empty password.
When smbc_opendir() is called from samba-4.5.x "SPNEGO(ntlmssp) login
failed: NT_STATUS_WRONG_CREDENTIAL_HANDLE" is returned.
But the same call from samba-4.1.x is no problem.

If any password is given along with user smbc_opendir() succeeds in
samba-4.5.x.

However NT_STATUS_WRONG_CREDENTIAL_HANDLE is new error code(not present in
samba-4.1.x).

Is the spec changed in latest samba for security concern to not to allow
anonymous login.
Or is it an issue in the latest samba?


Thanks & Regards,
Shivappa



--
View this message in context:
http://samba.2283325.n4.nabble.com/samba-4-5-x-Doesn-t-work-against-Anonymous-login-to-windows-tp4719259.html
Sent from the Samba - General mailing list archive at Nabble.com.

If I pass empty password, it always failed in wbcCredentialCache()....
.......................
auth/ntlmssp/ntlmssp_client.c:

*                wbc_status = wbcCredentialCache(& params, &info,
&error);*
                wbcFreeMemory(error);
                if (!WBC_ERROR_IS_OK(wbc_status)) {
                        return NT_STATUS_WRONG_CREDENTIAL_HANDLE;
                }
.......................

If I input some password, this condition always satisfy since all
credentials are present.

Can anybody plz help me to understand is this expected in latest samba ?





--
View this message in context:
http://samba.2283325.n4.nabble.com/samba-4-5-x-Doesn-t-work-against-Anonymous-login-to-windows-tp4719259p4719298.html
Sent from the Samba - General mailing list archive at Nabble.com.