Displaying 12 results from an estimated 12 matches for "lp_security".
2019 Feb 18
0
SMB Signing with "map to guest = " options
..._status = check_account(tmp_ctx,
nt_domain,
nt_username,
&found_username,
&pwd,
&username_was_mapped);
if (!NT_STATUS_IS_OK(nt_status)) {
/* Handle 'map to guest = Bad Uid */
if (NT_STATUS_EQUAL(nt_status, NT_STATUS_NO_SUCH_USER) &&
(lp_security() == SEC_ADS || lp_security() == SEC_DOMAIN) &&
lp_map_to_guest() == MAP_TO_GUEST_ON_BAD_UID) {
DBG_NOTICE("Try to map %s to guest account",
nt_username);
nt_status = make_server_info_guest(tmp_ctx, &result);
if (NT_STATUS_IS_OK(nt_status)) {
*server_...
2001 Apr 20
0
Fudging domain support - samba 2.2.0
...S7N 5A9, CANADA
Phone: (306)966-4832 Fax: (306)966-5205 Email: Ian_MacPhedran@engr.USask.CA
-------------- next part --------------
*** orig/samba-2.2.0/source/smbd/reply.c Thu Apr 12 22:09:39 2001
--- samba-2.2.0/source/smbd/reply.c Wed Apr 18 15:59:55 2001
***************
*** 616,623 ****
if(lp_security() != SEC_DOMAIN)
return False;
! if (!check_domain_match(orig_user, domain))
! return False;
ret = domain_client_validate(orig_user, domain,
smb_apasswd, smb_apasslen,
--- 616,625 ----
if(lp_security() != SEC_DOMAIN)
return False;...
2006 Aug 08
2
Applying security updates
...uot;make_connection: PANIC ERROR.
Called as nonroot\n");
}
+ if (conn_num_open() > 2047) {
+ *status =
NT_STATUS_INSUFF_SERVER_RESOURCES;
+ return NULL;
+ }
+
if(lp_security() != SEC_SHARE) {
vuser = get_valid_user_struct(vuid);
if (!vuser) {
Does anyone know how to apply the update?
Many thanks
Steve
2002 Jun 03
1
What is so bad about primaryGroupID=513?
...action
in the log file performs a "switch message SMBsesssetupX (pid 7865)",
the C0000078 logins have a "switch message SMBtrans" in this position.
This is slightly puzzling.
Yours, Florian Hars.
PS: isn't there a return(True) missing in uid.c/change_to_user:
if((lp_security() == SEC_SHARE) && (current_user.conn == conn) &&
(current_user.uid == conn->uid)) {
DEBUG(4,("change_to_user: Skipping user change - already user\n"));
return(True);
} else if ((current_user.conn == conn) &&...
2004 Jul 15
1
Slowdown due to change in DC lookup from 3.0.1 to 3.0.2a
...if ( !get_dc_name(domain, NULL, dc_name, &dc_ip) ) {
DEBUG(3,("enumerate_domain_trusts: can't locate a DC for domain %s\n",
domain));
The function get_dc_name was changed in libsmb/namequery_dc.c (1.5 to 1.6 in
MAIN) from:
if ( (our_domain && lp_security()==SEC_ADS) || strchr_m(domain, '.') ) {
ret = ads_dc_name(domain, &dc_ip, srv_name);
To:
if ( (our_domain && lp_security()==SEC_ADS) || realm ) {
ret = ads_dc_name(domain, realm, &dc_ip, srv_name);
It appears before ads_dc_name () was being called before b...
2019 Feb 14
3
SMB Signing with "map to guest = " options
Hi,
I'm using samba-4.7.x
I have some confusions over "map to guest=" options with setting SMB Signing
1. Set "*Server signing =auto*", "*map to guest=bad uid*" and set "client
signing in windows 2k12 server group policy" to "Microsoft network client:
Digitally sign communications (Always)” = *Disable*"
SMB_Server is joined to Windows 2k12
1998 Jul 13
1
password server problem
We are using samba with a NT4.0 Primary Domain Controller as a samba password
server.
Logon validation on the primary domain controller works fine, the NT machine
validates the user password.
BUT: On the NT PDC the event log shows numerous entries saying:
Unknown user or wrong password
Did anybody experience this too ????
Rainer von Bongartz
/D/I/L/
rainer.von-bongartz@dil.de
2008 Sep 21
1
[SOLVED] Howto auth against an NT domain I don't control?
After many more hours of searching, I found someone else in the exact same
situation as me. But even better, he figured it out and posted a patch!
http://lists.samba.org/archive/samba-technical/2008-February/057829.html
Thank you Claude!
--
http://theamigo.blogspot.com
2007 Dec 01
0
[3.2.0pre1] net ads join fails with NT_STATUS_NOLOGON_WORKSTATION_TRUST_ACCOUNT
...uint32 neg_flags = NETLOGON_NEG_AUTH2_FLAGS|NETLOGON_NEG_SCHANNEL;
struct cli_state *cli = NULL;
struct rpc_pipe_client *pipe_hnd = NULL;
struct rpc_pipe_client *netlogon_pipe = NULL;
NTSTATUS ntret = NT_STATUS_UNSUCCESSFUL;
- sec = (enum security_types)lp_security();
-
- if (sec == SEC_ADS) {
- /* Connect to IPC$ using machine account's credentials. We don't use anonymous
- connection here, as it may be denied by server's local policy. */
- net_use_machine_account();
-
- } else {
-...
1998 Jun 19
1
SAMBA 1.9.18p8, username map, server security
I have a problem with new version (1.9.18p8) of SAMBA and username
mapping.
Configuration:
WindowsNT 4.0 Workstation + SP1
WindowsNT domain - NTEP01 is PDC
Digital UNIX 3.2C
Username on NT:
Babor
Username on UNIX:
baborl
In SMB.CONF I have following lines:
[global]
security = server
password server = NTEP01
username map = /usr/local/samba/lib/username.map
username.map:
baborl = babor
2009 Jan 29
1
Problem compiling 3.3.0?
On RH 5.2, and I've previously compiled and installed 3.0.28a on this
box. configure ran clean, but make fails with:-
Compiling smbd/server.c
Linking bin/smbd
smbd/server.o: In function `housekeeping_fn':
server.c:(.text+0x21e): undefined reference to
`attempt_machine_password_change'
collect2: ld returned 1 exit status
make: *** [bin/smbd] Error 1
Anyone else encountered this?
2000 May 22
1
Inherit Permissions addition
...}
+ }
+
+ /*
* We need a separate check in security=share mode due to vuid
* always being UID_FIELD_INVALID. If we don't do this then
* in share mode security we are *always* changing uid's between
@@ -177,12 +216,12 @@
*/
if((lp_security() == SEC_SHARE) && (current_user.conn == conn) &&
- (current_user.uid == conn->uid)) {
+ (current_user.uid == conn->uid) && (!inheritnewgid)) {
DEBUG(4,("Skipping become_user - already user\n"));
return(True);...