Problem1: Some users are able to connect to "any" share (including
home directories) "without" a password.
Problems2: Killing smbd pid kills ypsrv and ypbind
Looks like smbd is capturing the interrupt and then killing yp*
This does not happen with "kill -9"
Comments: I am suspecting that smbd has been hacked.
Questions: Does anybody know of any problems like this?
Specs:
================
Samba Version: Version 1.6.16p11
OS version: Digital Unix 4.0
The smb.conf
----------------------------------------------------------------------------
[global]
; printing = bsd
; printcap name = /etc/printcap
; load printers = yes
; guest account = pcguest
comment = ESU's Academic UNIX system
lock directory = /usr/llocal/samba/var/locks
share modes = yes
hosts allow = 123.123.123. , 123,123.124.
hosts deny = ALL
invalid users = root field
dead time = 15
status = yes
interfaces = 123.123.123.5/24 123.123.124.5/24
printable = no
; preferred master = No
; remote announce = 123.123.123.123/PCDOM_1 123.123.124.123/PCDOM_2
[homes]
comment = Home Directories
browseable = no
writable = yes
create mode = 0750
locking = no
; fake oplocks = yes
; read prediction = True
-------------------------------------------------------------------------
-- Alan
.----------------------------------.-------------------------------------.
| E-mail: alan@esu.edu | Microcomputer Specialist/Integrator |
| WWW: http://www.esu.edu/~alan | Academic Computing |
| Tel: (717) 422-3783 | East Stroudsburg University |
`----------------------------------`-------------------------------------'