similar to: [SECURITY] Samba 3.0.21-3.0.21c: Exposure of machine account credentials in winbindd log files

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ========================================================== == == Subject: Exposed clear text of domain machine == account password in debug logs (log == level >= 5) == CVE ID#: CAN_2006-1059 == == Versions: Samba Samba 3.0.21 - 3.0.21c (inclusive) == == Summary: The winbindd daemon writes the clear text ==

I'm getting some strange entries in my logs after upgrading to samba version 3.0.21-1. Also in 3.0.21a-1. The machines connection to my samba pdc are WinXP SP2 and also a 2003 server. For example: [2006/01/03 21:57:28, 0] libsmb/credentials.c:creds_server_check(159) creds_server_check: credentials check failed. [2006/01/03 21:57:28, 0] rpc_server/srv_netlog_nt.c:_net_sam_logon(667)

R-helpers, I am hoping to find someone who uses both R and program Stata for GLMs. I am a beginner R user, finding my own way through; learning code etc. at the same time as learning the statistics I need to complete my project. What I have is the code from Stata and am trying to reproduce the same analysis in R - my program of choice. . glm count md ms rf sg, family(poisson)

Hi, I'm hoping that someone will be able to help. I would like to compare how covariates associate with the risk of a binary outcome during two periods. Period 1 will be non-exposure to a treatment and period 2 will be exposure to a treatment. The same individuals will be examined in each group but I want to be able to compare the association of certain covariates between the two groups to

I just confirmed the following bug on my firefox. http://secunia.com/advisories/14820/ Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.7.5) Gecko/20050219 Firefox/1.0 (I think my firefox is a month or two behind, from ports, but the advisary indicates both 1.0.1 and 1.0.2 are effected.) FreeBSD localhost 5.3-RELEASE FreeBSD 5.3-RELEASE #0: Fri Nov 5 04:19:18 UTC 2004

We specifically do not update the disk i_size if there are ordered extents outstanding for any area between the current disk_i_size and our ordered extent so that we do not expose stale data. The problem is the check we have only checks if the ordered extent starts at or after the current disk_i_size, which doesn''t take into account an ordered extent that starts before the current

Hey all, I have a many-to-many relationship (Questions has_and_belongs_to_many Answers), and when I destroy the Question (the one) I also destroy all the Answers (the many). Since the following doesn''t seem to work for has_and_belongs_to_many: class Question < AR::Base... has_and_belongs_to_many :answers, :dependent => :destroy end I have this embedded in a transaction block

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ========================================================== == == Subject: Buffer overrun in NSS host lookup Winbind == library on Solaris == CVE ID#: CVE-2007-0453 == == Versions: Samba 3.0.21 - 3.0.23d (inclusive) running on == Sun Solaris == == Summary: A potential overrun in the gethostbyname() == and getipnodebyname() in the

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ========================================================== == == Subject: Buffer overrun in NSS host lookup Winbind == library on Solaris == CVE ID#: CVE-2007-0453 == == Versions: Samba 3.0.21 - 3.0.23d (inclusive) running on == Sun Solaris == == Summary: A potential overrun in the gethostbyname() == and getipnodebyname() in the

Hello, I'm working in France (Europe), and use daylight saving time (aka DST aka summertime). I upgraded my Samba server from 3.0.20b to 3.0.21c. Got complaints from a user that all his *WINTER* files modification date mysteriously shifted one hour ahead. It took me some time to find out the culprit, since we just switched from wintertime to summertime. On Unix (tested both Solaris 9 and

I recently upgraded a 3.0.14a installation (using an OpenLDAP backend) to 3.0.23c and noticed that when using the Windows User Manager group members are no longer listed when viewing a group--when 'ldapsam:trusted = yes' is set. I've since compiled and tested various versions using default options and the last time I see this member listing working was in 3.0.20b--3.0.21 and

Can anyone help with the following error I get whilst comiling samba, configured with following flags:- ./configure --prefix=/opt/samba-3.0.21c --with-ldap --with-ads --with-krb5 --with-pam --with-winbind heimal kerberos heimdal-0.7.2 openldap openldap-2.3.20 [WMSTRAIN:root]/appfs2/samba/samba-3.0.21c/source> make && make install Using FLAGS = -O -D_SAMBA_BUILD_ -I./popt

regarding the segfault that shows up when calling pam_open_session in sshd under solaris-- In the dec 1 Solaris 7 patch report update, there is one mention of pam: Patch-ID# 107285-01 Synopsis: SunOS 5.7: passwd & pam_unix.so.1 patch BugId's fixed with this patch: 4172457 Changes incorporated in this version: Date: Aug/17/99 but it doesn't seem to be freely available -- when looking

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ========================================================== == == Subject: Potential Denial of Service bug in smbd == CVE ID#: CVE-2007-0452 == == Versions: Samba 3.0.6 - 3.0.23d (inclusive) == == Summary: A logic error in the deferred open code == can lead to an infinite loop in smbd ==

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ========================================================== == == Subject: Potential Denial of Service bug in smbd == CVE ID#: CVE-2007-0452 == == Versions: Samba 3.0.6 - 3.0.23d (inclusive) == == Summary: A logic error in the deferred open code == can lead to an infinite loop in smbd ==

I am starting with a matrix in which rows are vegetation plots and columns are various characteristics including ID# and elevation. I removed elevation and ID columns to avoid having those characteristics influence the distances between points which I calculated using the "dist" command. The resulting distance file was then used in isoMDS. What I want to know is whether I can

Hallo, We protect linux/apache server with mod_auth_ntlm_winbind.so to authenticate users with their domain accounts. The server is joined into windows domain (Windows 2003 Server). Apache/mod_auth_ntlm_winbind.so is configured for NTLM+SPNEGO authentication. So far users can login when providing valid credentials. Users login into their windows workstation (Windows XP SP2 IE/Firefox) with

I would like to get a curve of normal distrubtion over the histogram. Something like the following (which obviously doesn't work; see attached example). maluj <- function() { vrhy=read.csv("pennies.csv",head=TRUE) hf=table(vrhy$HEADS) postscript("heads.eps",onefile=FALSE,width=4.134,height=3.445,pointsize=12) plot(hf,main="Frequency distribution of

Hi, yesterday I compiled an installed samba 3.0.21 on a solaris 8 box (gcc 3.4.2). Since then I frequently see this error message in the log. [2005/12/22 15:55:39, 0] lib/fault.c:fault_report(36) =============================================================== [2005/12/22 15:55:39, 0] lib/fault.c:fault_report(37) INTERNAL ERROR: Signal 10 in pid 27816 (3.0.21) Please read the

Hi! Today I installed samba 3.0.21 on debian sarge. I see this error in syslog: Jan 4 18:07:27 2T-Samba smbd[8352]: [2006/01/04 18:07:27, 1] libads/ldap.c:ads_connect(292) Jan 4 18:07:27 2T-Samba smbd[8352]: Failed to get ldap server info why? I upgrade my pdc from samba 3.0.20b to 3.0.21 and in the previous version I didn't see this error. Can you help me? Thanks, Fabio