similar to: Login to LDAP from new version FortiClientEMS

On 1/11/24 04:06, Programnet via samba wrote: > I just want to make sure that Samba LDAP does not support ntlmsspNegotiate authentication and I will have to switch to > Windows Server? That sounds like an inaccurate conclusion. ntlmssp is not new. If you are looking at the conversation in Wireshark, you could tell us what the packets are actually saying, or you could show us your smb.conf

pcap is? on my google drive https://drive.google.com/file/d/1GW-vSGratvQ2dOE-iGVPfj5w72ZBaUUR/view?usp=sharing W dniu 1.11.2024 o?01:48, Douglas Bagnall pisze: > On 1/11/24 04:06, Programnet via samba wrote: >> I just want to make sure that Samba LDAP does not support ntlmsspNegotiate authentication and I will have to switch to >> Windows Server? > That sounds like an

In attach pcap My samba config [global] ??????? netbios name = DC1 ??????? realm = XXXX.LOCAL ??????? server role = active directory domain controller ??????? server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, drepl, winbindd, ntp_signd, kcc, dnsupdate ??????? workgroup = XXXX ??????? log level = 1 auth_audit:3@/var/log/samba/auth.log ??????? log file = /var/log/samba/%m.log

On Tue, 5 Nov 2024 14:40:01 +0100 Programnet via samba <samba at lists.samba.org> wrote: > > W dniu 2.11.2024 o?11:19, Rowland Penny via samba pisze: > > > > If your TLD is '.local', then I take it you missed that it is > > reserved for Bonjour and Avahi, so if Avahi is running on the DC, > > you should turn it off (and everywhere else in your domain).

W dniu 2.11.2024 o?11:19, Rowland Penny via samba pisze: > > If your TLD is '.local', then I take it you missed that it is reserved > for Bonjour and Avahi, so if Avahi is running on the DC, you should > turn it off (and everywhere else in your domain). I am aware of this. The domain was set up almost 20 years ago, at that time some guides advised not to do anything on the

On Sat, 2 Nov 2024 09:46:20 +0100 Programnet via samba <samba at lists.samba.org> wrote: > In attach pcap > > My samba config > [global] > ??????? netbios name = DC1 > ??????? realm = XXXX.LOCAL > ??????? server role = active directory domain controller > ??????? server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, > drepl, winbindd, ntp_signd, kcc,

On 6/11/24 02:24, Programnet wrote: > In log I find: > > [2024/11/05 14:19:11.121983,? 3] lib/ldb-samba/ > ldb_wrap.c:340(ldb_wrap_connect) > ? ldb_wrap open of secrets.ldb > [2024/11/05 14:19:11.122344,? 3] lib/ldb-samba/ > ldb_wrap.c:340(ldb_wrap_connect) > ? ldb_wrap open of secrets.ldb > [2024/11/05 14:19:11.123630,? 3] source4/samba/ >

In log I find: [2024/11/05 14:19:11.121983,? 3] lib/ldb-samba/ldb_wrap.c:340(ldb_wrap_connect) ? ldb_wrap open of secrets.ldb [2024/11/05 14:19:11.122344,? 3] lib/ldb-samba/ldb_wrap.c:340(ldb_wrap_connect) ? ldb_wrap open of secrets.ldb [2024/11/05 14:19:11.123630,? 3] source4/samba/service_stream.c:67(stream_terminate_connection) ? stream_terminate_connection: Terminating connection -

On 2/11/24 21:54, Programnet wrote: > pcap is? on my google drive That looks innocuous enough. What do you see in the logs if you have log level = auth:6 in smb.conf? Douglas

Le Fri, 4 Oct 2024 09:27:12 +0100 Rowland Penny via samba <samba at lists.samba.org> ?crivait: > > > > OK, I'll try first the 4.17 version from the backports, and if it's > > not enough I'll upgrade to 4.20. > > I would upgrade to bookworm with Samba from backports, but its your > domain ;-) Well I've upgraded up to 4.20, but no dice :( No

Hi Philip, Thank you very much for your comments. I think I’ve discovered a root cause. The problem was in linking bit code archive files with the module. At some point, std::set<Module*> is used and iterated over. I believe this was the reason why e.g. It worked consistently with ASLR turned off and produced non-deterministic output otherwise. I changed that bit to use vector instead and

Hi Philip, I would like to ask a follow-up question about code generation. Do you know if is expected that if we take the same bit code modules and link them together in the same order (programatically), but on different machines (assuming the same version of LLVM and roughly the same OS), the output may differ with respect to order of function definitions inside module? Thank you very much in

Hello, I have a weird issue with rsync randomly marking some files as having a different checksum (see sample outputs below - run one after another). You would think it is some kind of corruption / io problem with the files but it doesn't seem so - I have copied files around, changes source to different machines, counted md5s manually 100s of times - always the same. All files except

On Fri, 4 Oct 2024 10:11:37 +0200 Emmanuel Florac <eflorac at intellique.com> wrote: > Le Thu, 3 Oct 2024 21:35:04 +0100 > Rowland Penny via samba <samba at lists.samba.org> ?crivait: > > > > Yes, I mean Windows 11 or WIndows Server 2022 machines that are > > > registered into the AD. A Win11 PC which isn't AD-connected (but > > > in the same

> I am not a regular samba developer, but I wanted to have psexec > equivalent, so I wrote it, it works but still need some development. > I do not know if patches of such sizes (about 30k) are welcome on > this list so I've put it on web page, with some description: > http://eol.ovh.org/winexe/ > Comments welcome. Hi, this is really great, you can get Windows command

There is a reason most NMS systems used SNMP in the past and REST apis past 7+ years. They don't use CLIs except toy Expect type scripts.. Not just security but better error handling and more. Good luck learning! On Thu, Mar 29, 2018 at 9:03 AM, Tomasz Chmielewski <mangoo at wpkg.org> wrote: > SNMP is mainly used for monitoring, not _server_ automation. > > Also, it's

SNMP is mainly used for monitoring, not _server_ automation. Also, it's inherently insecure for anything else - only SNMPv3 offers any kind of encryption, and it's DES - 56 bit only, and you can easily brute-force it on an average computer. If you could provide some serious articles about why is CLI insecure, I'd be interested to read. Tomasz Chmielewski https://lxadm.com On

Al like any open-source or free sofware you need to put the leg work into what you want it to be. My company is actually creating something using TINC and we believe in it. If successful we'll be giving back to TINC monetarily in a big way to make TINC even better so if TINC isn't for you keep an eye on further developments in the future. Thanks, Rafael On Thu, Mar 29, 2018 at 12:03

automation refers to day to day vpn management from non-IT layman... not a geek running shell/ansible scrpits. On Thu, Mar 29, 2018 at 8:48 AM, al so <volkswak at gmail.com> wrote: > Just search online why in general that is insecure via CLI vs programmatic > for first class automation.. there is a reason why snmp, rest, ... exist. > > On Thu, Mar 29, 2018 at 3:50 AM, Tomasz

On Wed, Oct 16, 2019 at 12:19:02PM +0900, Tomasz Figa wrote: > On Wed, Oct 9, 2019 at 12:04 AM Daniel Vetter <daniel at ffwll.ch> wrote: > > > > On Tue, Oct 08, 2019 at 07:49:39PM +0900, Tomasz Figa wrote: > > > On Tue, Oct 8, 2019 at 7:03 PM Daniel Vetter <daniel at ffwll.ch> wrote: > > > > > > > > On Sat, Oct 05, 2019 at 02:41:54PM