Bug 1415 - User recognition failed with Samba 3.0.4 (compared to 2.2.9)
Summary: User recognition failed with Samba 3.0.4 (compared to 2.2.9)
Status: CLOSED FIXED
Alias: None
Product: Samba 3.0
Classification: Unclassified
Component: User/Group Accounts (show other bugs)
Version: 3.0.4
Hardware: PA-RISC HP-UX
: P3 major
Target Milestone: none
Assignee: Samba Bugzilla Account
QA Contact: Samba QA Contact
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2004-05-30 03:17 UTC by Marc Seguin
Modified: 2005-08-24 10:22 UTC (History)
0 users

See Also:


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Marc Seguin 2004-05-30 03:17:56 UTC
###########
DESCRIPTION
###########

Here are the results of sharing files with Samba 2.2.9 and Samba 3.0.4 :

Both versions of Samba are installed on a HP J5600 (hostname = mtp3) with HP-UX 
10.20, compiled locally with gcc.

The config files (smb.conf and smbusers) are at the end of this message.

With Samba 2.2.9 :
-----------------------
From a Windows workstation (monfs02/user:admin_mon), I can reach my Samba 
share :

root@mtp3:/tmp# /usr/local/samba/bin/smbstatus -d    
using configfile = /usr/local/samba/lib/smb.conf
Opened /usr/local/samba/var/locks/connections.tdb

Samba version 2.2.9
Service      uid      gid      pid     machine
----------------------------------------------
tttmmppp     root     sys       9270   monfs02  (10.58.80.42) Tue Jun  1 
22:34:30 2004

No locked files


Everything looks OK for me. Even for more complicated read/write access for 
shares defined in smb.conf 


With Samba 3.0.4 :
-----------------------
Using the same smb.conf (except NetBios name) and same file smbusers, 
from the same Windows workstation and same user (monfs02/user:admin_mon), I can 
reach the Samba share. But instead of being user "root", I become user "bb".

root@mtp3:/usr/local# /usr/local/samba/bin/smbstatus -d                     
Unknown parameter encountered: "read size"
Ignoring unknown parameter "read size"

Samba version 3.0.4
PID     Username      Group         Machine                        
-------------------------------------------------------------------
10360   bb            adm           monfs02      (10.58.80.42)

Service      pid     machine       Connected at
-------------------------------------------------------
tttmmppp     10360   monfs02       Tue Jun  1 22:39:24 2004
No locked files


I lose all specific permissions allowed by smb.conf because I become a generic 
user (bb = *) or a guest user.
What happened ??? 



############
CONFIG FILES
############

SMB.CONF :
[global]
        workgroup = FR-MON
        netbios name = MTP3-TEST-???
        server string = Samba Server (%h)
        security = domain
        encrypt passwords = Yes
        password server = *
        username map = /etc/smbusers
        log file = /var/opt/samba/log.%m
        name resolve order = wins host lmhosts bcast
        change notify timeout = 120
        deadtime = 10
        keepalive = 0
        lpq cache time = 0
        read size = 32768
        socket options = TCP_NODELAY SO_KEEPALIVE SO_SNDBUF=65535 
SO_RCVBUF=65535
        load printers = No
        printcap name = /opt/samba/lib/printcap
        os level = 42
        lm announce = False
        lm interval = 0
        local master = No
        dns proxy = No
        wins server = 10.58.80.1
        guest account = pcguest

[tttmmppp]
        comment = temporaire
        path = /tmp
        read only = No
        guest ok = Yes


SMBUSERS :
!root = admin_mon
bb = *



######################
ADDITIONAL INFORMATION
######################

- I stop any version of Samba before starting running the other one.


- Result of "joining domain" for both versions :
Samba 2.2.9 :
-------------
root@mtp3:/usr/local# /usr/local/samba/bin/smbpasswd -j FR-MON -r monnet01 -
Uadmin_mon
Password: 
Joined domain FR-MON.

Samba 3.0.4 :
-------------
root@mtp3:/usr/local# /usr/local/samba/bin/net join -S monnet01 -Uadmin_mon
[2004/06/01 22:38:44, 0] param/loadparm.c:map_parameter(2420)
  Unknown parameter encountered: "read size"
[2004/06/01 22:38:44, 0] param/loadparm.c:lp_do_parameter(3110)
  Ignoring unknown parameter "read size"
Password:
Joined domain FR-MON.


- Result of "smbclient" for both versions :
Samba 2.2.9 :
-------------
root@mtp3:/tmp# /usr/local/samba/bin/smbclient -L localhost -U%
added interface ip=10.58.80.59 bcast=10.58.95.255 nmask=255.255.240.0
added interface ip=10.254.254.3 bcast=10.254.254.255 nmask=255.255.255.0
Domain=[FR-MON] OS=[Unix] Server=[Samba 2.2.9]
tree connect failed: NT_STATUS_WRONG_PASSWORD

Samba 3.0.4 :
-------------
root@mtp3:/usr/local# /usr/local/samba/bin/smbclient -L localhost -U%
Unknown parameter encountered: "read size"
Ignoring unknown parameter "read size"
session setup failed: NT_STATUS_LOGON_FAILURE


- On Windows servers (PDC, Wins,...) the patch KB828741 is installed. I think 
that it is linked to this patch because I observed strange behavior, difficult 
to explain, since the patch is installed.

For example : (on another HP server)
-------------
With Samba 2.2.8a : everything OK.
I tried to upgrade to Samba 2.2.9 (same smb.conf, with same NetBios name) :
- I delete NetBios name from Windows domain and Wins server.
- I do "smbpasswd" from Samba 2.2.9 (runs OK)
- I run Samba 2.2.9 daemons : impossible to reach the shares !!
- I try to run back to 2.2.8a :
- I delete NetBios name from Windows domain and Wins server.
- I do "smbpasswd" from Samba 2.2.8a (runs OK)
- I run Samba 2.2.8a daemons :Impossible to reach the shares !!
- I remove KB828741 from PDC server (OS=NT4)
- I delete NetBios name from Windows domain and Wins server.
- I do "smbpasswd" from Samba 2.2.9 (runs OK)
- I run Samba 2.2.9 daemons : everything OK
- I reinstall KB828741 on PDC server
everything is still OK now...


You can join me for further tests.

Regards,
Marc.
Comment 1 Gerald (Jerry) Carter (dead mail address) 2005-02-08 07:59:08 UTC
please retest 3.0.11.  This should have been cleaned up in 3.0.8 
(refer to the WHATSNEW for details about the username map changes).
Comment 2 Gerald (Jerry) Carter (dead mail address) 2005-08-24 10:22:45 UTC
sorry for the same, cleaning up the database to prevent unecessary reopens of bugs.