Created attachment 12013 [details] debug level 10 Testing Samba 4.4.2 as a file server running on Solaris 10 i386 with a Windows Server 2000 computer as the DC. Upon startup the smb.log contains the following: [2016/04/15 10:08:09.738117, 0] \ ../source3/libads/sasl.c:764(ads_sasl_spnego_bind) kinit succeeded but \ ads_sasl_spnego_gensec_bind(KRB5) failed: Unexpected information received \ [2016/04/15 10:08:09.738732, 0] \ ../source3/printing/nt_printing.c:187(nt_printing_init) nt_printing_init: error checking published printers: WERR_ACCESS_DENIED These messages do not show up with 4.4.0.
Created attachment 12014 [details] snoop capture log snoop log The ip address of the DC is 192.168.2.178 The ip address of the Samba machine is 192.168.2.150
Created attachment 12019 [details] Possible patch for v4-4
The patch fixes the problem for 4.4.2. I expect that the same problem exists in 4.3.8. I will go build that and see.
As expected, 4.3.8 has the same bug and the patch fixes it. The patch applied with an offset of -3 lines, which I think was also the offset for 4.4.2. I am sure that 4.2.11 will also have the bug, but I am not going to check that one. As an aside, we are running 4.3.6 in production and I am just trying 4.4.2 and 4.3.8 on a test system. I will probably soon switch to 4.3.8 and switch to 4.4.* later.
(In reply to Stefan Metzmacher from comment #2) Metze, is this patch suitable for master ? Looks like the code applies here.
(In reply to Jeremy Allison from comment #5) I'll propose the whole patchset hopefully tomorrow the current work in progress can be found at https://git.samba.org/?p=metze/samba/wip.git;a=shortlog;h=refs/heads/v4-4-ntlmssp I just need to finish the regression tests.
Comment on attachment 12019 [details] Possible patch for v4-4 Please test the patches from bug #11849, thanks!
The patch from Bug 11849 also fixes this problem for both 4.4.2 and 4.3.8.
*** This bug has been marked as a duplicate of bug 11849 ***