Hi all,
I've just set up password encryption using 1.9.18p4. I compiled with NO
ALLOW_CHANGE_PASSWORD option because compilation didn't work (I'm using
HP-UX 10.20). Everything seems to be working correctly instead of a
'normal' user trying to change his (samba-) password using smbpasswd
(root can change any password). The messages I receive are as follows:
Old SMB password:
New SMB password:
Retype new SMB password:
Connecting to 127.0.0.1 at port 139
write_socket(3,76)
write_socket(3,76) wrote 76
Sent session request
got smb length of 1
../bin/smbpasswd: machine 127.0.0.1 rejected the session request. Error
was : code 131.
I've already read a mail about a similar problem saying there might be a
problem with the 'chat-script'. Correct me if I'm wrong but to my
opinion there should be no chat at all unless specifying 'unix passwd
sync = true' in smb.conf.
What am I doing wrong? Did I understand the story about the chat the
right way? Do you need ALLOW_CHANGE_PASSWORD to change the
samba-password (to my understanding it's only needed if youwant to
change the unix-password aswell)?
Any help would be appreciated!
Thank you very much,
Rainer Hauck
The output in the log.smb file at a debug level of 100 (compiled with
-DEBUG_PASSWORD) is as follows:
...
adding IPC service
03/31/1998 16:04:55 changed root to /
open_oplock_ipc: opening loopback UDP socket.
bind succeeded on port 0
open_oplock ipc: pid = 12845, oplock_port = 4300
priming nmbd
sending a packet of len 1 to (127.0.0.1) on port 137 of type DGRAM
Serverzone is -7200
got smb length of 72
03/31/1998 16:04:55 Connection denied from 127.0.0.1
write_socket(6,5)
write_socket(6,5) wrote 5
Closing connections
03/31/1998 16:04:55 Server exit (connection denied)
got SIGCLD
The relevant part of my smb.conf file is as follows:
security = user
password level = 0
encrypt passwords = yes
--
_ _ _ _ _ _ RAINER HAUCK
|\/| |\ | |\/| Institut fuer Informatik / Dept. of CS
| | | \| | | Ludwig-Maximilians-University Munich
======= TEAM ======= Oettingenstr. 67, 80538 Munich, Germany
Munich Network Management Team Room D01,Phone +49-89-2178-2155,Fax-2262
Muenchner Netz-Management Team email: hauck@informatik.uni-muenchen.de
Rainer Hauck wrote:> I've just set up password encryption using 1.9.18p4. I compiled with NO > ALLOW_CHANGE_PASSWORD option because compilation didn't work (I'm using > HP-UX 10.20). Everything seems to be working correctly instead of a > 'normal' user trying to change his (samba-) password using smbpasswd > (root can change any password). The messages I receive are as follows: > > Old SMB password: > New SMB password: > Retype new SMB password: > Connecting to 127.0.0.1 at port 139 > write_socket(3,76) > write_socket(3,76) wrote 76 > Sent session request > got smb length of 1 > ./bin/smbpasswd: machine 127.0.0.1 rejected the session request. Error > was : code 131. > > I've already read a mail about a similar problem saying there might be a > problem with the 'chat-script'. Correct me if I'm wrong but to my > opinion there should be no chat at all unless specifying 'unix passwd > sync = true' in smb.conf. >Yes that is correct.> adding IPC service > 03/31/1998 16:04:55 changed root to / > open_oplock_ipc: opening loopback UDP socket. > bind succeeded on port 0 > open_oplock ipc: pid = 12845, oplock_port = 4300 > priming nmbd > sending a packet of len 1 to (127.0.0.1) on port 137 of type DGRAM > Serverzone is -7200 > got smb length of 72 > 03/31/1998 16:04:55 Connection denied from 127.0.0.1 > write_socket(6,5) > write_socket(6,5) wrote 5 > Closing connections > 03/31/1998 16:04:55 Server exit (connection denied) > got SIGCLD >The interesting line is : 03/31/1998 16:04:55 Connection denied from 127.0.0.1 Do you have a hosts allow/ hosts deny list in smb.conf ? If so you may want to add localhost to the allow list :-). Jeremy. -- -------------------------------------------------------- Buying an operating system without source is like buying a self-assembly Space Shuttle with no instructions. --------------------------------------------------------
Hi, I'm getting the following problem: ../bin/smbpasswd -U rpmarti New SMB password: Retype new SMB password: getsmbfilepwent: malformed password entry (no terminating :) getsmbfilepwent: malformed password entry (no terminating :) getsmbfilepwent: malformed password entry (no terminating :) getsmbfilepwent: malformed password entry (no terminating :) getsmbfilepwent: malformed password entry (no terminating :) getsmbfilepwent: malformed password entry (no terminating :) getsmbfilepwent: malformed password entry (no terminating :) getsmbfilepwent: malformed password entry (no terminating :) getsmbfilepwent: malformed password entry (no terminating :) getsmbfilepwent: malformed password entry (no terminating :) Failed to find entry for user rpmarti. Failed to modify password entry for user rpmarti The user is defined in the smbpasswd file located in /usr/local/samba/private directory. Why the No terminating : ? I don't get it. Even if I turned on update encryption in the global section still gives me this error.> Phillip B. Bruce, Manager > kpmg Consulting > Network Engineering & IntegrationSVO Phone: 650-404-4132 500 E. Middlefield Road Mt. View, CA 94043 ***************************************************************************** The information in this email is confidential and may be legally privileged. It is intended solely for the addressee. Access to this email by anyone else is unauthorized. If you are not the intended recipient, any disclosure, copying, distribution or any action taken or omitted to be taken in reliance on it, is prohibited and may be unlawful. When addressed to our clients any opinions or advice contained in this email are subject to the terms and conditions expressed in the governing KPMG client engagement letter. *****************************************************************************
Any clues as to why we are experencing this problem?
commands executed as a normal user, not as root
$ uname -a
HP-UX swamy B.11.00 B 9000/800 1441622391 16-user license
$ smbpasswd
Old SMB password:
New SMB password:
Retype new SMB password:
machine 127.0.0.1 rejected the tconX on the IPC$ share. Error was : code 0.
Failed to change password for lprwf1
$ cat smb.conf
# Samba config file created using SWAT
# from ltseb1.lgn.bcs.moore.com (172.27.9.105)
# Date: 2000/11/13 10:24:36
# Global parameters
[global]
workgroup = LOGAN-NT
netbios name = SWAMY
server string = Samba Server
encrypt passwords = Yes
update encrypted = Yes
syslog = 0
log file = /var/opt/samba/log.%m
max log size = 1000
printcap name = lpstat
local master = No
wins server = 172.27.12.233
read only = No
short preserve case = No
dos filetime resolution = Yes
[printer]
path = /tmp
print ok = Yes
[homes]
comment = Home Directories
browseable = No
[tmp]
path = /tmp
[ff]
comment = home directory
path = /apps/ff
valid users = fharris
[apps]
comment = home directory
path = /apps
valid users = lhmls1
[u1]
comment = home directory
path = /main/u1
valid users = +prog, +scan, +cards, +prod
[u2]
comment = home directory
path = /main/u2
valid users = +prog, +cards, +prod
Found a little more information on this from the log file. $ smbpasswd Old SMB password: New SMB password: Retype new SMB password: machine 127.0.0.1 rejected the tconX on the IPC$ share. Error was : code 0. Failed to change password for lprwf1 $ tail /var/opt/samba/log.swamy [2000/11/13 13:22:46, 0] lib/util_sec.c:(67) Failed to set gid privileges to (-1,-2) now set to (0,0) uid=(0,0) [2000/11/13 13:22:46, 0] lib/util.c:(2456) PANIC: failed to set gid