search for: seal

Dear All, It may be this not the correct mailing list, but I''m having a ZFS issue when a disk is failing. The system is a supermicro motherboard X8DTH-6F in a 4U chassis (SC847E1-R1400LPB) and an external SAS2 JBOD (SC847E16-RJBOD1). It makes a system with a total of 4 backplanes (2x SAS + 2x SAS2) each of them connected to a 4 different HBA (2x LSI 3081E-R (1068 chip) + 2x LSI

...readily appear there are network connectivity issues. Of possible note, the following log sequence is, repeatedly, observed within the Samba debug logs: [2023/07/06 11:14:15.676774, 3, pid=2118992, effective(0, 0), real(0, 0)] ../auth/ntlmssp/ntlmssp_sign.c:509(ntlmssp_sign_reset) NTLMSSP Sign/Seal - Initialising with flags: [2023/07/06 11:14:15.676783, 3, pid=2118992, effective(0, 0), real(0, 0)] ../auth/ntlmssp/ntlmssp_util.c:69(debug_ntlmssp_flags) Got NTLMSSP neg_flags=0x62008a15 NTLMSSP_NEGOTIATE_UNICODE NTLMSSP_REQUEST_TARGET NTLMSSP_NEGOTIATE_SIGN NTLMSSP_NEGOTIATE_N...

...:271(auth_check_password_send) auth_check_password_send: Checking password for unmapped user []\[administrator]@[TEST] auth_check_password_send: mapped user is: [SAMDOM]\[administrator]@[TEST] [2018/03/26 16:32:38.901252, 3] ../auth/ntlmssp/ntlmssp_sign.c:509(ntlmssp_sign_reset) NTLMSSP Sign/Seal - Initialising with flags: [2018/03/26 16:32:38.901492, 3] ../auth/ntlmssp/ntlmssp_util.c:69(debug_ntlmssp_flags) Got NTLMSSP neg_flags=0xe2088215 [2018/03/26 16:32:38.901669, 3] ../auth/ntlmssp/ntlmssp_sign.c:509(ntlmssp_sign_reset) NTLMSSP Sign/Seal - Initialising with flags: [2018/03/26 16...

Hi, I encounter a problem with method dispatch with S4 classes, using the 'sealed' parameter in setClass. See that example below: setClass("X",representation(x="numeric"),sealed=TRUE) setGeneric("foo",function(x) standardGeneric("foo")) setMethod("foo",signature("X"),function(x) print("foo(X)")) x <...

...s I only show 2... [2015/07/29 00:00:04.620033, 0] ../source4/librpc/rpc/dcerpc_util.c:681(dcerpc_pipe_auth_recv) Failed to bind to uuid e3514235-4b06-11d1-ab04-00c04fc2dcd2 for e3514235-4b06-11d1-ab04-00c04fc2dcd2 at ncacn_ip_tcp :016bc892-2083-4410-b528-21ded3c2a6c9._msdcs.kl01.test.net[49155,seal,krb5] NT_STATUS_NET_WRITE_FAULT [2015/07/29 00:00:09.661698, 0] ../source4/librpc/rpc/dcerpc_util.c:681(dcerpc_pipe_auth_recv) Failed to bind to uuid e3514235-4b06-11d1-ab04-00c04fc2dcd2 for e3514235-4b06-11d1-ab04-00c04fc2dcd2 at ncacn_ip_tcp :016bc892-2083-4410-b528-21ded3c2a6c9._msdcs.kl01.te...

...d_send) > auth_check_password_send: Checking password for unmapped user []\[administrator]@[TEST] > auth_check_password_send: mapped user is: [SAMDOM]\[administrator]@[TEST] > [2018/03/26 16:32:38.901252, 3] ../auth/ntlmssp/ntlmssp_sign.c:509(ntlmssp_sign_reset) > NTLMSSP Sign/Seal - Initialising with flags: > [2018/03/26 16:32:38.901492, 3] ../auth/ntlmssp/ntlmssp_util.c:69(debug_ntlmssp_flags) > Got NTLMSSP neg_flags=0xe2088215 > [2018/03/26 16:32:38.901669, 3] ../auth/ntlmssp/ntlmssp_sign.c:509(ntlmssp_sign_reset) > NTLMSSP Sign/Seal - Initialising with...

...6-2112.html > > =================== > New smb.conf option > =================== > > ldap server require strong auth (G) > > The ldap server require strong auth defines whether the > ldap server requires ldap traffic to be signed or > signed and encrypted (sealed). Possible values are no, > allow_sasl_over_tls and yes. > > A value of no allows simple and sasl binds over all transports. > > A value of allow_sasl_over_tls allows simple and sasl binds > (without sign or seal) > over TLS encrypted connections. Unencrypted...

...3, 0] > > ../source4/librpc/rpc/dcerpc_util.c:681(dcerpc_pipe_auth_recv) > > Failed to bind to uuid e3514235-4b06-11d1-ab04-00c04fc2dcd2 for > > e3514235-4b06-11d1-ab04-00c04fc2dcd2 at ncacn_ip_tcp > > :016bc892-2083-4410-b528-21ded3c2a6c9._msdcs.kl01.test.net > [49155,seal,krb5] > > NT_STATUS_NET_WRITE_FAULT > > [2015/07/29 00:00:09.661698, 0] > > ../source4/librpc/rpc/dcerpc_util.c:681(dcerpc_pipe_auth_recv) > > Failed to bind to uuid e3514235-4b06-11d1-ab04-00c04fc2dcd2 for > > e3514235-4b06-11d1-ab04-00c04fc2dcd2 at ncacn_ip_tcp &g...

Hi the list When two setGeneric occurs on the same function, the second erage the first and erase all the function previously define. Is it possible to prevent that ? Is it possible to declare a setGeneric that can not be erased later ? Something like the |sealed for setMethod...| || |Thanks| || Christophe

...or 1 minor 7.1 year 2003 month 06 day 16 language R ## define a base class (virtual) without prototype setClass("IDataType", representation("VIRTUAL", valid="logical"), validity=NULL, sealed=TRUE) ## same now with prototype definition setClass("IDataType1", representation("VIRTUAL", valid="logical"), prototype=list(valid=TRUE), validity=NULL, sealed=TRUE) ## and now the der...

...auth_check_password_send: Checking password for unmapped user []\[administrator]@[TEST] &gt; auth_check_password_send: mapped user is: [SAMDOM]\[administrator]@[TEST] &gt; [2018/03/26 16:32:38.901252, 3] ../auth/ntlmssp/ntlmssp_sign.c:509(ntlmssp_sign_reset) &gt; NTLMSSP Sign/Seal - Initialising with flags: &gt; [2018/03/26 16:32:38.901492, 3] ../auth/ntlmssp/ntlmssp_util.c:69(debug_ntlmssp_flags) &gt; Got NTLMSSP neg_flags=0xe2088215 &gt; [2018/03/26 16:32:38.901669, 3] ../auth/ntlmssp/ntlmssp_sign.c:509(ntlmssp_sign_reset) &gt; NTLMSSP Sign/Seal...

Hi everyone, I have installed a Samba AD DC version 4.2.11-20 in a Centos 6.7 machine and joined it in an existing domain. Everything seems working fine except I can't bind to it using LDAP simple authentication. When I try to perform a simple ldapsearch I get the following response: ldap_bind: Strong(er) authentication required (8) additional info: BindSimple: Transport encryption required.

...some way to ''tight'' that configuration , eg permit 'ldap server require strong auth = > > no' only by some hosts? > > Or some other smb.conf options that i've missed? > Nothing at this stage. Ok. > The issue is that they need to do fully signed or sealed Kerberos SASL. Sorry, but i've really a bit of confusion in this field... You forgot a 'not' somwhere in this sentence? ;-) I've understood that 'sign or seal' mean SASL over TLS/SSL, and my printer suport only SASL, so it is not 'sign and sealed'... > I ag...

...d --option=socket:testnonblock=True --option=torture:quick=yes -k yes(dc)." ERROR: Testsuite[samba4.rpc.echo on ncacn_ip_tcp with bigendian and --option=socket:testnonblock=True --option=torture:quick=yes -k yes(dc)] REASON: Exit code was 1 == samba4.rpc.echo on ncacn_ip_tcp with bigendian,seal and --option=socket:testnonblock=True --option=torture:quick=yes -k yes(dc) == command: bin/smbtorture --configfile=$SMB_CONF_PATH --maximum-runtime=$SELFTEST_MAXTIME --target=$SELFTEST_TARGET --basedir=$SELFTEST_TMPDIR --option=torture:progress=no --format=subunit --option=torture:quick=yes ncacn_...

...[2015/07/29 00:00:04.620033, 0] > ../source4/librpc/rpc/dcerpc_util.c:681(dcerpc_pipe_auth_recv) > Failed to bind to uuid e3514235-4b06-11d1-ab04-00c04fc2dcd2 for > e3514235-4b06-11d1-ab04-00c04fc2dcd2 at ncacn_ip_tcp > :016bc892-2083-4410-b528-21ded3c2a6c9._msdcs.kl01.test.net[49155,seal,krb5] > NT_STATUS_NET_WRITE_FAULT > [2015/07/29 00:00:09.661698, 0] > ../source4/librpc/rpc/dcerpc_util.c:681(dcerpc_pipe_auth_recv) > Failed to bind to uuid e3514235-4b06-11d1-ab04-00c04fc2dcd2 for > e3514235-4b06-11d1-ab04-00c04fc2dcd2 at ncacn_ip_tcp > :016bc892-2083-4410-b5...

...ing Kerberos to authenticate but not set up > transport security? > > Regards, > > Brian. > > How about this ??: client ldap sasl wrapping (G) The client ldap sasl wrapping defines whether ldap traffic will be signed or signed and encrypted (sealed). Possible values are plain, sign and seal. The values sign and seal are only available if Samba has been compiled against a modern OpenLDAP version (2.3.x or higher). This option is needed in the case of Domain Controllers enforcing the us...

...out the AS (authentication service) request. Therefore it's difficult to find the problem cause. > > Maybe the LDAP part is easier to solve. Although the TCP dump does not show much details it indicates the problem: > "bindResponse(3) strongAuthRequired (SASL:[GSS-SPNEGO]: Sign or Seal are required" > Basically the LDAP Server requires a secured connection. > > This is related to following SAMBA settings: > >ldap server require strong auth (G) > > > >The ldap server require strong auth defines whether the ldap server requires ldap traffic to be sig...

...cceeded [2016/08/08 09:42:49.961610, 2] ../source3/auth/auth.c:305(auth_check_ntlm_password) check_ntlm_password: authentication for user [username] -> [username] -> [username] succeeded [2016/08/08 09:42:49.961671, 3] ../auth/ntlmssp/ntlmssp_sign.c:509(ntlmssp_sign_reset) NTLMSSP Sign/Seal - Initialising with flags: [2016/08/08 09:42:49.961699, 3] ../auth/ntlmssp/ntlmssp_util.c:69(debug_ntlmssp_flags) Got NTLMSSP neg_flags=0x62088215 [2016/08/08 09:42:49.961748, 3] ../auth/ntlmssp/ntlmssp_sign.c:509(ntlmssp_sign_reset) NTLMSSP Sign/Seal - Initialising with flags: [2016/08/08 09...

...Andrew Bartlett via samba In chel di` si favelave... > > This mean that the printer try to auth in LDAP 'plain' (no SSL, no > > TLS), and so samba refuse that? > No, it means that Samba is refusing to accept a NTLM or Kerberos > authenticated connection without SIGN or SEAL negotiated, as an > attacker could take over an unprotected network connection and do evil > things with it. > See 'ldap server require strong auth'. Ok, so i suppose i've to test 'ldap server require strong auth', but probably set it to 'NO', that lead cleraly...

Hallo When rejoining a dc to the domain I get the following error message: [2015/07/02 11:51:44.089786, 0] ../source4/librpc/rpc/dcerpc_util.c:729(dcerpc_pipe_auth_recv) Failed to bind to uuid e3514235-4b06-11d1-ab04-00c04fc2dcd2 for ncacn_ip_tcp:192.168.39.8[1024,seal,krb5,target_hostname=e55933ab-dcfd-42f4-9e77-ae2e7964d301._msdcs.domain.local.de,abstract_syntax=e3514235-4b06-11d1-ab04-00c04fc2dcd2/0x00000004,localaddress=192.168.99.8] NT_STATUS_INVALID_PARAMETER [2015/07/02 11:51:49.987117, 0] ../source4/librpc/rpc/dcerpc_util.c:729(dcerpc_pipe_auth_recv)...