Bug 3879 - *** buffer overflow detected ***: /usr/sbin/winbindd terminated
*** buffer overflow detected ***: /usr/sbin/winbindd terminated
Status: RESOLVED FIXED
Product: Samba 3.0
Classification: Unclassified
Component: winbind
3.0.22
x86 Linux
: P3 major
: none
Assigned To: Samba Bugzilla Account
Samba QA Contact
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2006-06-28 10:01 UTC by Christian Echetto
Modified: 2006-06-28 10:24 UTC (History)
0 users

See Also:


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Christian Echetto 2006-06-28 10:01:22 UTC
Got a buffer overflow from Winbind as soon as its started. Was working ok a few days ago.
OS: OpenSuse 10.1
rpm -qi samba:

Name        : samba                        Relocations: (not relocatable)
Version     : 3.0.22                            Vendor: SUSE LINUX Products GmbH, Nuernberg, Germany
Release     : 11                            Build Date: Tue May  2 05:43:54 2006
Install Date: Thu Jun  8 06:31:12 2006      Build Host: saramber
Group       : Productivity/Networking/Samba   Source RPM: samba-3.0.22-11.src.rpm
Size        : 8110077                          License: GPL
Signature   : DSA/SHA1, Tue May  2 05:53:05 2006, Key ID a84edae89c800aca

Log with debug level 10:

      0000 major     : 05
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0001 minor     : 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0002 pkt_type  : 0b
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0003 flags     : 03
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0004 pack_type0: 10
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0005 pack_type1: 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0006 pack_type2: 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0007 pack_type3: 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
      0008 frag_len  : 0048
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
      000a auth_len  : 0000
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
      000c call_id   : 00000003
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84)
  000010 smb_io_rpc_hdr_rb 
[2006/06/28 11:51:53, 6] rpc_parse/parse_prs.c:prs_debug(84)
      000010 smb_io_rpc_hdr_bba 
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
          0010 max_tsize: 10b8
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
          0012 max_rsize: 10b8
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
          0014 assoc_gid: 00000000
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0018 num_contexts: 01
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
      001c context_id  : 0000
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      001e num_transfer_syntaxes: 01
[2006/06/28 11:51:53, 6] rpc_parse/parse_prs.c:prs_debug(84)
      00001f smb_io_rpc_iface 
[2006/06/28 11:51:53, 7] rpc_parse/parse_prs.c:prs_debug(84)
          000020 smb_io_uuid uuid
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
              0020 data   : 12345778
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
              0024 data   : 1234
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
              0026 data   : abcd
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8s(819)
              0028 data   : ef 00 
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8s(819)
              002a data   : 01 23 45 67 89 ab 
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
          0030 version: 00000000
[2006/06/28 11:51:53, 6] rpc_parse/parse_prs.c:prs_debug(84)
      000034 smb_io_rpc_iface 
[2006/06/28 11:51:53, 7] rpc_parse/parse_prs.c:prs_debug(84)
          000034 smb_io_uuid uuid
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
              0034 data   : 8a885d04
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
              0038 data   : 1ceb
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
              003a data   : 11c9
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8s(819)
              003c data   : 9f e8 
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8s(819)
              003e data   : 08 00 2b 10 48 60 
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
          0044 version: 00000002
[2006/06/28 11:51:53, 5] rpc_client/cli_pipe.c:rpc_api_pipe(770)
  rpc_api_pipe: Remote machine ARBASSRV01 pipe \lsarpc fnum 0xc00d
[2006/06/28 11:51:53, 5] lib/util.c:show_msg(454)
[2006/06/28 11:51:53, 5] lib/util.c:show_msg(464)
  size=154
  smb_com=0x25
  smb_rcls=0
  smb_reh=0
  smb_err=0
  smb_flg=8
  smb_flg2=55297
  smb_tid=20484
  smb_pid=11598
  smb_uid=38912
  smb_mid=10
  smt_wct=16
  smb_vwv[ 0]=    0 (0x0)
  smb_vwv[ 1]=   72 (0x48)
  smb_vwv[ 2]=    0 (0x0)
  smb_vwv[ 3]= 4280 (0x10B8)
  smb_vwv[ 4]=    0 (0x0)
  smb_vwv[ 5]=    0 (0x0)
  smb_vwv[ 6]=    0 (0x0)
  smb_vwv[ 7]=    0 (0x0)
  smb_vwv[ 8]=    0 (0x0)
  smb_vwv[ 9]=    0 (0x0)
  smb_vwv[10]=   82 (0x52)
  smb_vwv[11]=   72 (0x48)
  smb_vwv[12]=   82 (0x52)
  smb_vwv[13]=    2 (0x2)
  smb_vwv[14]=   38 (0x26)
  smb_vwv[15]=49165 (0xC00D)
  smb_bcc=87
[2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058)
  [000] 00 5C 00 50 00 49 00 50  00 45 00 5C 00 00 00 05  .\.P.I.P .E.\....
  [010] 00 0B 03 10 00 00 00 48  00 00 00 03 00 00 00 B8  .......H ........
  [020] 10 B8 10 00 00 00 00 01  00 00 00 00 00 01 00 78  ........ .......x
  [030] 57 34 12 34 12 CD AB EF  00 01 23 45 67 89 AB 00  W4.4.... ..#Eg...
  [040] 00 00 00 04 5D 88 8A EB  1C C9 11 9F E8 08 00 2B  ....]... .......+
  [050] 10 48 60 02 00 00 00                              .H`.... 
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:simple_packet_signature(270)
  simple_packet_signature: sequence number 14
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:client_sign_outgoing_message(340)
  client_sign_outgoing_message: sent SMB signature of
[2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058)
  [000] F3 66 B4 28 F6 06 46 F1                           .f.(..F. 
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:store_sequence_for_reply(74)
  store_sequence_for_reply: stored seq = 15 mid = 10
[2006/06/28 11:51:53, 6] libsmb/clientgen.c:write_socket(132)
  write_socket(3,158)
[2006/06/28 11:51:53, 6] libsmb/clientgen.c:write_socket(135)
  write_socket(3,158) wrote 158
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:get_sequence_for_reply(87)
  get_sequence_for_reply: found seq = 15 mid = 10
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:cli_signing_trans_start(537)
  cli_signing_trans_start: storing mid = 10, reply_seq_num = 15, send_seq_num = 14 data->send_seq_num = 16
[2006/06/28 11:51:53, 10] lib/util_sock.c:read_smb_length_return_keepalive(618)
  got smb length of 124
[2006/06/28 11:51:53, 5] lib/util.c:show_msg(454)
[2006/06/28 11:51:53, 5] lib/util.c:show_msg(464)
  size=124
  smb_com=0x25
  smb_rcls=0
  smb_reh=0
  smb_err=0
  smb_flg=136
  smb_flg2=55301
  smb_tid=20484
  smb_pid=11598
  smb_uid=38912
  smb_mid=10
  smt_wct=10
  smb_vwv[ 0]=    0 (0x0)
  smb_vwv[ 1]=   68 (0x44)
  smb_vwv[ 2]=    0 (0x0)
  smb_vwv[ 3]=    0 (0x0)
  smb_vwv[ 4]=   56 (0x38)
  smb_vwv[ 5]=    0 (0x0)
  smb_vwv[ 6]=   68 (0x44)
  smb_vwv[ 7]=   56 (0x38)
  smb_vwv[ 8]=    0 (0x0)
  smb_vwv[ 9]=    0 (0x0)
  smb_bcc=69
[2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058)
  [000] 48 05 00 0C 03 10 00 00  00 44 00 00 00 03 00 00  H....... .D......
  [010] 00 B8 10 B8 10 94 5A 23  00 0C 00 5C 50 49 50 45  ......Z# ...\PIPE
  [020] 5C 6C 73 61 73 73 00 00  01 01 00 00 00 00 00 00  \lsass.. ........
  [030] 00 04 5D 88 8A EB 1C C9  11 9F E8 08 00 2B 10 48  ..]..... .....+.H
  [040] 60 02 00 00 00                                    `.... 
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:simple_packet_signature(270)
  simple_packet_signature: sequence number 15
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:client_check_incoming_message(416)
  client_check_incoming_message: seq 15: got good SMB signature of
[2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058)
  [000] 4B D2 3F 5F E4 4B 70 4D                           K.?_.KpM 
[2006/06/28 11:51:53, 5] lib/util.c:show_msg(454)
[2006/06/28 11:51:53, 5] lib/util.c:show_msg(464)
  size=124
  smb_com=0x25
  smb_rcls=0
  smb_reh=0
  smb_err=0
  smb_flg=136
  smb_flg2=55301
  smb_tid=20484
  smb_pid=11598
  smb_uid=38912
  smb_mid=10
  smt_wct=10
  smb_vwv[ 0]=    0 (0x0)
  smb_vwv[ 1]=   68 (0x44)
  smb_vwv[ 2]=    0 (0x0)
  smb_vwv[ 3]=    0 (0x0)
  smb_vwv[ 4]=   56 (0x38)
  smb_vwv[ 5]=    0 (0x0)
  smb_vwv[ 6]=   68 (0x44)
  smb_vwv[ 7]=   56 (0x38)
  smb_vwv[ 8]=    0 (0x0)
  smb_vwv[ 9]=    0 (0x0)
  smb_bcc=69
[2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058)
  [000] 48 05 00 0C 03 10 00 00  00 44 00 00 00 03 00 00  H....... .D......
  [010] 00 B8 10 B8 10 94 5A 23  00 0C 00 5C 50 49 50 45  ......Z# ...\PIPE
  [020] 5C 6C 73 61 73 73 00 00  01 01 00 00 00 00 00 00  \lsass.. ........
  [030] 00 04 5D 88 8A EB 1C C9  11 9F E8 08 00 2B 10 48  ..]..... .....+.H
  [040] 60 02 00 00 00                                    `.... 
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:cli_signing_trans_stop(556)
  cli_signing_trans_stop: freeing mid = 10, reply_seq_num = 15, send_seq_num = 14 data->send_seq_num = 16
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84)
  000000 smb_io_rpc_hdr rpc_hdr   
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0000 major     : 05
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0001 minor     : 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0002 pkt_type  : 0c
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0003 flags     : 03
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0004 pack_type0: 10
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0005 pack_type1: 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0006 pack_type2: 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0007 pack_type3: 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
      0008 frag_len  : 0044
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
      000a auth_len  : 0000
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
      000c call_id   : 00000003
[2006/06/28 11:51:53, 10] rpc_client/cli_pipe.c:rpc_api_pipe(843)
  rpc_api_pipe: got PDU len of 68 at offset 0
[2006/06/28 11:51:53, 10] rpc_client/cli_pipe.c:rpc_api_pipe(894)
  rpc_api_pipe: Remote machine ARBASSRV01 pipe \lsarpc fnum 0xc00d returned 68 bytes.
[2006/06/28 11:51:53, 3] rpc_client/cli_pipe.c:rpc_pipe_bind(2081)
  rpc_pipe_bind: Remote machine ARBASSRV01 pipe \lsarpc fnum 0xc00d bind request returned ok.
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84)
  000000 smb_io_rpc_hdr hdr
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0000 major     : 05
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0001 minor     : 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0002 pkt_type  : 0c
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0003 flags     : 03
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0004 pack_type0: 10
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0005 pack_type1: 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0006 pack_type2: 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0007 pack_type3: 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
      0008 frag_len  : 0044
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
      000a auth_len  : 0000
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
      000c call_id   : 00000003
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84)
  000010 smb_io_rpc_hdr_ba 
[2006/06/28 11:51:53, 6] rpc_parse/parse_prs.c:prs_debug(84)
      000010 smb_io_rpc_hdr_bba 
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
          0010 max_tsize: 10b8
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
          0012 max_rsize: 10b8
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
          0014 assoc_gid: 00235a94
[2006/06/28 11:51:53, 6] rpc_parse/parse_prs.c:prs_debug(84)
      000018 smb_io_rpc_addr_str 
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
          0018 len: 000c
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8s(819)
          001a str: \PIPE\lsass.
[2006/06/28 11:51:53, 6] rpc_parse/parse_prs.c:prs_debug(84)
      000026 smb_io_rpc_results 
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
          0028 num_results: 01
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
          002c result     : 0000
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
          002e reason     : 0000
[2006/06/28 11:51:53, 6] rpc_parse/parse_prs.c:prs_debug(84)
      000030 smb_io_rpc_iface 
[2006/06/28 11:51:53, 7] rpc_parse/parse_prs.c:prs_debug(84)
          000030 smb_io_uuid uuid
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
              0030 data   : 8a885d04
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
              0034 data   : 1ceb
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
              0036 data   : 11c9
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8s(819)
              0038 data   : 9f e8 
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8s(819)
              003a data   : 08 00 2b 10 48 60 
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
          0040 version: 00000002
[2006/06/28 11:51:53, 5] rpc_client/cli_pipe.c:check_bind_response(1701)
  check_bind_response: accepted!
[2006/06/28 11:51:53, 10] rpc_client/cli_pipe.c:cli_rpc_pipe_open_noauth(2253)
  cli_rpc_pipe_open_noauth: opened pipe \lsarpc to machine ARBASSRV01 and bound anonymously.
[2006/06/28 11:51:53, 5] rpc_parse/parse_lsa.c:init_lsa_sec_qos(142)
  init_lsa_sec_qos
[2006/06/28 11:51:53, 5] rpc_parse/parse_lsa.c:init_q_open_pol2(325)
  init_q_open_pol2: attr:0 da:33554432
[2006/06/28 11:51:53, 5] rpc_parse/parse_lsa.c:init_lsa_obj_attr(193)
  init_lsa_obj_attr
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84)
  000000 lsa_io_q_open_pol2 
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
      0000 ptr       : 00000001
[2006/06/28 11:51:53, 6] rpc_parse/parse_prs.c:prs_debug(84)
      000004 smb_io_unistr2 
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
          0004 uni_max_len: 0000000d
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
          0008 offset     : 00000000
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
          000c uni_str_len: 0000000d
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:dbg_rw_punival(904)
          0010 buffer     : \.\.A.R.B.A.S.S.R.V.0.1...
[2006/06/28 11:51:53, 6] rpc_parse/parse_prs.c:prs_debug(84)
      00002a lsa_io_obj_attr 
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
          002c len         : 00000018
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
          0030 ptr_root_dir: 00000000
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
          0034 ptr_obj_name: 00000000
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
          0038 attributes  : 00000000
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
          003c ptr_sec_desc: 00000000
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
          0040 ptr_sec_qos : 00000001
[2006/06/28 11:51:53, 7] rpc_parse/parse_prs.c:prs_debug(84)
          000044 lsa_io_obj_qos sec_qos
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
              0044 len           : 0000000c
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
              0048 sec_imp_level : 0002
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
              004a sec_ctxt_mode : 01
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
              004b effective_only: 00
[2006/06/28 11:51:53, 3] rpc_parse/parse_lsa.c:lsa_io_sec_qos(181)
  lsa_io_sec_qos: length c does not match size 8
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
      004c des_access: 02000000
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84)
  000000 smb_io_rpc_hdr hdr    
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0000 major     : 05
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0001 minor     : 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0002 pkt_type  : 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0003 flags     : 03
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0004 pack_type0: 10
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0005 pack_type1: 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0006 pack_type2: 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0007 pack_type3: 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
      0008 frag_len  : 0068
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
      000a auth_len  : 0000
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
      000c call_id   : 00000004
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84)
  000010 smb_io_rpc_hdr_req hdr_req
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
      0010 alloc_hint: 00000050
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
      0014 context_id: 0000
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
      0016 opnum     : 002c
[2006/06/28 11:51:53, 5] rpc_client/cli_pipe.c:rpc_api_pipe(770)
  rpc_api_pipe: Remote machine ARBASSRV01 pipe \lsarpc fnum 0xc00d
[2006/06/28 11:51:53, 5] lib/util.c:show_msg(454)
[2006/06/28 11:51:53, 5] lib/util.c:show_msg(464)
  size=186
  smb_com=0x25
  smb_rcls=0
  smb_reh=0
  smb_err=0
  smb_flg=8
  smb_flg2=55297
  smb_tid=20484
  smb_pid=11598
  smb_uid=38912
  smb_mid=11
  smt_wct=16
  smb_vwv[ 0]=    0 (0x0)
  smb_vwv[ 1]=  104 (0x68)
  smb_vwv[ 2]=    0 (0x0)
  smb_vwv[ 3]= 4280 (0x10B8)
  smb_vwv[ 4]=    0 (0x0)
  smb_vwv[ 5]=    0 (0x0)
  smb_vwv[ 6]=    0 (0x0)
  smb_vwv[ 7]=    0 (0x0)
  smb_vwv[ 8]=    0 (0x0)
  smb_vwv[ 9]=    0 (0x0)
  smb_vwv[10]=   82 (0x52)
  smb_vwv[11]=  104 (0x68)
  smb_vwv[12]=   82 (0x52)
  smb_vwv[13]=    2 (0x2)
  smb_vwv[14]=   38 (0x26)
  smb_vwv[15]=49165 (0xC00D)
  smb_bcc=119
[2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058)
  [000] 00 5C 00 50 00 49 00 50  00 45 00 5C 00 00 00 05  .\.P.I.P .E.\....
  [010] 00 00 03 10 00 00 00 68  00 00 00 04 00 00 00 50  .......h .......P
  [020] 00 00 00 00 00 2C 00 01  00 00 00 0D 00 00 00 00  .....,.. ........
  [030] 00 00 00 0D 00 00 00 5C  00 5C 00 41 00 52 00 42  .......\ .\.A.R.B
  [040] 00 41 00 53 00 53 00 52  00 56 00 30 00 31 00 00  .A.S.S.R .V.0.1..
  [050] 00 00 00 18 00 00 00 00  00 00 00 00 00 00 00 00  ........ ........
  [060] 00 00 00 00 00 00 00 01  00 00 00 0C 00 00 00 02  ........ ........
  [070] 00 01 00 00 00 00 02                              ....... 
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:simple_packet_signature(270)
  simple_packet_signature: sequence number 16
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:client_sign_outgoing_message(340)
  client_sign_outgoing_message: sent SMB signature of
[2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058)
  [000] 44 4E 4F AF 07 C2 41 85                           DNO...A. 
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:store_sequence_for_reply(74)
  store_sequence_for_reply: stored seq = 17 mid = 11
[2006/06/28 11:51:53, 6] libsmb/clientgen.c:write_socket(132)
  write_socket(3,190)
[2006/06/28 11:51:53, 6] libsmb/clientgen.c:write_socket(135)
  write_socket(3,190) wrote 190
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:get_sequence_for_reply(87)
  get_sequence_for_reply: found seq = 17 mid = 11
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:cli_signing_trans_start(537)
  cli_signing_trans_start: storing mid = 11, reply_seq_num = 17, send_seq_num = 16 data->send_seq_num = 18
[2006/06/28 11:51:53, 10] lib/util_sock.c:read_smb_length_return_keepalive(618)
  got smb length of 104
[2006/06/28 11:51:53, 5] lib/util.c:show_msg(454)
[2006/06/28 11:51:53, 5] lib/util.c:show_msg(464)
  size=104
  smb_com=0x25
  smb_rcls=0
  smb_reh=0
  smb_err=0
  smb_flg=136
  smb_flg2=55301
  smb_tid=20484
  smb_pid=11598
  smb_uid=38912
  smb_mid=11
  smt_wct=10
  smb_vwv[ 0]=    0 (0x0)
  smb_vwv[ 1]=   48 (0x30)
  smb_vwv[ 2]=    0 (0x0)
  smb_vwv[ 3]=    0 (0x0)
  smb_vwv[ 4]=   56 (0x38)
  smb_vwv[ 5]=    0 (0x0)
  smb_vwv[ 6]=   48 (0x30)
  smb_vwv[ 7]=   56 (0x38)
  smb_vwv[ 8]=    0 (0x0)
  smb_vwv[ 9]=    0 (0x0)
  smb_bcc=49
[2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058)
  [000] 68 05 00 02 03 10 00 00  00 30 00 00 00 04 00 00  h....... .0......
  [010] 00 18 00 00 00 00 00 00  00 00 00 00 00 03 D6 92  ........ ........
  [020] 98 2C BB 45 45 BA 3D CB  70 E9 A1 69 DD 00 00 00  .,.EE.=. p..i....
  [030] 00                                                . 
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:simple_packet_signature(270)
  simple_packet_signature: sequence number 17
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:client_check_incoming_message(416)
  client_check_incoming_message: seq 17: got good SMB signature of
[2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058)
  [000] C2 FE 77 6A E1 ED 65 8F                           ..wj..e. 
[2006/06/28 11:51:53, 5] lib/util.c:show_msg(454)
[2006/06/28 11:51:53, 5] lib/util.c:show_msg(464)
  size=104
  smb_com=0x25
  smb_rcls=0
  smb_reh=0
  smb_err=0
  smb_flg=136
  smb_flg2=55301
  smb_tid=20484
  smb_pid=11598
  smb_uid=38912
  smb_mid=11
  smt_wct=10
  smb_vwv[ 0]=    0 (0x0)
  smb_vwv[ 1]=   48 (0x30)
  smb_vwv[ 2]=    0 (0x0)
  smb_vwv[ 3]=    0 (0x0)
  smb_vwv[ 4]=   56 (0x38)
  smb_vwv[ 5]=    0 (0x0)
  smb_vwv[ 6]=   48 (0x30)
  smb_vwv[ 7]=   56 (0x38)
  smb_vwv[ 8]=    0 (0x0)
  smb_vwv[ 9]=    0 (0x0)
  smb_bcc=49
[2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058)
  [000] 68 05 00 02 03 10 00 00  00 30 00 00 00 04 00 00  h....... .0......
  [010] 00 18 00 00 00 00 00 00  00 00 00 00 00 03 D6 92  ........ ........
  [020] 98 2C BB 45 45 BA 3D CB  70 E9 A1 69 DD 00 00 00  .,.EE.=. p..i....
  [030] 00                                                . 
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:cli_signing_trans_stop(556)
  cli_signing_trans_stop: freeing mid = 11, reply_seq_num = 17, send_seq_num = 16 data->send_seq_num = 18
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84)
  000000 smb_io_rpc_hdr rpc_hdr   
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0000 major     : 05
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0001 minor     : 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0002 pkt_type  : 02
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0003 flags     : 03
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0004 pack_type0: 10
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0005 pack_type1: 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0006 pack_type2: 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0007 pack_type3: 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
      0008 frag_len  : 0030
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
      000a auth_len  : 0000
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
      000c call_id   : 00000004
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84)
  000010 smb_io_rpc_hdr_resp rpc_hdr_resp
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
      0010 alloc_hint: 00000018
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
      0014 context_id: 0000
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0016 cancel_ct : 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0017 reserved  : 00
[2006/06/28 11:51:53, 10] rpc_client/cli_pipe.c:cli_pipe_validate_current_pdu(577)
  cli_pipe_validate_current_pdu: got pdu len 48, data_len 24, ss_len 0
[2006/06/28 11:51:53, 10] rpc_client/cli_pipe.c:rpc_api_pipe(843)
  rpc_api_pipe: got PDU len of 48 at offset 0
[2006/06/28 11:51:53, 10] rpc_client/cli_pipe.c:rpc_api_pipe(894)
  rpc_api_pipe: Remote machine ARBASSRV01 pipe \lsarpc fnum 0xc00d returned 48 bytes.
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84)
  000000 lsa_io_r_open_pol2 
[2006/06/28 11:51:53, 6] rpc_parse/parse_prs.c:prs_debug(84)
      000000 smb_io_pol_hnd 
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
          0000 data1: 00000000
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
          0004 data2: 9892d603
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
          0008 data3: bb2c
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
          000a data4: 4545
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8s(819)
          000c data5: ba 3d cb 70 e9 a1 69 dd 
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_ntstatus(762)
      0014 status: NT_STATUS_OK
[2006/06/28 11:51:53, 5] rpc_parse/parse_lsa.c:init_q_query2(2231)
  init_q_query2
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84)
  000000 lsa_io_q_query_info2 
[2006/06/28 11:51:53, 6] rpc_parse/parse_prs.c:prs_debug(84)
      000000 smb_io_pol_hnd pol
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
          0000 data1: 00000000
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
          0004 data2: 9892d603
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
          0008 data3: bb2c
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
          000a data4: 4545
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8s(819)
          000c data5: ba 3d cb 70 e9 a1 69 dd 
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
      0014 info_class: 000c
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84)
  000000 smb_io_rpc_hdr hdr    
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0000 major     : 05
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0001 minor     : 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0002 pkt_type  : 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0003 flags     : 03
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0004 pack_type0: 10
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0005 pack_type1: 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0006 pack_type2: 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0007 pack_type3: 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
      0008 frag_len  : 002e
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
      000a auth_len  : 0000
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
      000c call_id   : 00000005
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84)
  000010 smb_io_rpc_hdr_req hdr_req
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
      0010 alloc_hint: 00000016
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
      0014 context_id: 0000
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
      0016 opnum     : 002e
[2006/06/28 11:51:53, 5] rpc_client/cli_pipe.c:rpc_api_pipe(770)
  rpc_api_pipe: Remote machine ARBASSRV01 pipe \lsarpc fnum 0xc00d
[2006/06/28 11:51:53, 5] lib/util.c:show_msg(454)
[2006/06/28 11:51:53, 5] lib/util.c:show_msg(464)
  size=128
  smb_com=0x25
  smb_rcls=0
  smb_reh=0
  smb_err=0
  smb_flg=8
  smb_flg2=55297
  smb_tid=20484
  smb_pid=11598
  smb_uid=38912
  smb_mid=12
  smt_wct=16
  smb_vwv[ 0]=    0 (0x0)
  smb_vwv[ 1]=   46 (0x2E)
  smb_vwv[ 2]=    0 (0x0)
  smb_vwv[ 3]= 4280 (0x10B8)
  smb_vwv[ 4]=    0 (0x0)
  smb_vwv[ 5]=    0 (0x0)
  smb_vwv[ 6]=    0 (0x0)
  smb_vwv[ 7]=    0 (0x0)
  smb_vwv[ 8]=    0 (0x0)
  smb_vwv[ 9]=    0 (0x0)
  smb_vwv[10]=   82 (0x52)
  smb_vwv[11]=   46 (0x2E)
  smb_vwv[12]=   82 (0x52)
  smb_vwv[13]=    2 (0x2)
  smb_vwv[14]=   38 (0x26)
  smb_vwv[15]=49165 (0xC00D)
  smb_bcc=61
[2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058)
  [000] 00 5C 00 50 00 49 00 50  00 45 00 5C 00 00 00 05  .\.P.I.P .E.\....
  [010] 00 00 03 10 00 00 00 2E  00 00 00 05 00 00 00 16  ........ ........
  [020] 00 00 00 00 00 2E 00 00  00 00 00 03 D6 92 98 2C  ........ .......,
  [030] BB 45 45 BA 3D CB 70 E9  A1 69 DD 0C 00           .EE.=.p. .i...
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:simple_packet_signature(270)
  simple_packet_signature: sequence number 18
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:client_sign_outgoing_message(340)
  client_sign_outgoing_message: sent SMB signature of
[2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058)
  [000] 76 4E 8A 82 31 8C 41 07                           vN..1.A. 
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:store_sequence_for_reply(74)
  store_sequence_for_reply: stored seq = 19 mid = 12
[2006/06/28 11:51:53, 6] libsmb/clientgen.c:write_socket(132)
  write_socket(3,132)
[2006/06/28 11:51:53, 6] libsmb/clientgen.c:write_socket(135)
  write_socket(3,132) wrote 132
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:get_sequence_for_reply(87)
  get_sequence_for_reply: found seq = 19 mid = 12
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:cli_signing_trans_start(537)
  cli_signing_trans_start: storing mid = 12, reply_seq_num = 19, send_seq_num = 18 data->send_seq_num = 20
[2006/06/28 11:51:53, 10] lib/util_sock.c:read_smb_length_return_keepalive(618)
  got smb length of 260
[2006/06/28 11:51:53, 5] lib/util.c:show_msg(454)
[2006/06/28 11:51:53, 5] lib/util.c:show_msg(464)
  size=260
  smb_com=0x25
  smb_rcls=0
  smb_reh=0
  smb_err=0
  smb_flg=136
  smb_flg2=55301
  smb_tid=20484
  smb_pid=11598
  smb_uid=38912
  smb_mid=12
  smt_wct=10
  smb_vwv[ 0]=    0 (0x0)
  smb_vwv[ 1]=  204 (0xCC)
  smb_vwv[ 2]=    0 (0x0)
  smb_vwv[ 3]=    0 (0x0)
  smb_vwv[ 4]=   56 (0x38)
  smb_vwv[ 5]=    0 (0x0)
  smb_vwv[ 6]=  204 (0xCC)
  smb_vwv[ 7]=   56 (0x38)
  smb_vwv[ 8]=    0 (0x0)
  smb_vwv[ 9]=    0 (0x0)
  smb_bcc=205
[2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058)
  [000] 2E 05 00 02 03 10 00 00  00 CC 00 00 00 05 00 00  ........ ........
  [010] 00 B4 00 00 00 00 00 00  00 A0 9D 51 0D 0C 00 00  ........ ...Q....
  [020] 00 0C 00 0E 00 70 67 26  01 16 00 18 00 78 C1 DF  .....pg& .....x..
  [030] 0B 16 00 18 00 28 62 78  01 C4 65 85 9F 32 BA 83  .....(bx ..e..2..
  [040] 49 89 E2 3B 2C BC 78 41  1B 28 FE AD 0B 07 00 00  I..;,.xA .(......
  [050] 00 00 00 00 00 06 00 00  00 45 00 53 00 41 00 42  ........ .E.S.A.B
  [060] 00 53 00 41 00 0C 00 00  00 00 00 00 00 0B 00 00  .S.A.... ........
  [070] 00 73 00 61 00 2E 00 65  00 73 00 61 00 62 00 2E  .s.a...e .s.a.b..
  [080] 00 6F 00 72 00 67 00 00  00 0C 00 00 00 00 00 00  .o.r.g.. ........
  [090] 00 0B 00 00 00 73 00 61  00 2E 00 65 00 73 00 61  .....s.a ...e.s.a
  [0A0] 00 62 00 2E 00 6F 00 72  00 67 00 00 00 04 00 00  .b...o.r .g......
  [0B0] 00 01 04 00 00 00 00 00  05 15 00 00 00 E5 DC AC  ........ ........
  [0C0] A1 FF E1 BB 42 A4 9D DD  4A 00 00 00 00           ....B... J....
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:simple_packet_signature(270)
  simple_packet_signature: sequence number 19
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:client_check_incoming_message(416)
  client_check_incoming_message: seq 19: got good SMB signature of
[2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058)
  [000] F8 7B A4 45 93 7B 32 D9                           .{.E.{2. 
[2006/06/28 11:51:53, 5] lib/util.c:show_msg(454)
[2006/06/28 11:51:53, 5] lib/util.c:show_msg(464)
  size=260
  smb_com=0x25
  smb_rcls=0
  smb_reh=0
  smb_err=0
  smb_flg=136
  smb_flg2=55301
  smb_tid=20484
  smb_pid=11598
  smb_uid=38912
  smb_mid=12
  smt_wct=10
  smb_vwv[ 0]=    0 (0x0)
  smb_vwv[ 1]=  204 (0xCC)
  smb_vwv[ 2]=    0 (0x0)
  smb_vwv[ 3]=    0 (0x0)
  smb_vwv[ 4]=   56 (0x38)
  smb_vwv[ 5]=    0 (0x0)
  smb_vwv[ 6]=  204 (0xCC)
  smb_vwv[ 7]=   56 (0x38)
  smb_vwv[ 8]=    0 (0x0)
  smb_vwv[ 9]=    0 (0x0)
  smb_bcc=205
[2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058)
  [000] 2E 05 00 02 03 10 00 00  00 CC 00 00 00 05 00 00  ........ ........
  [010] 00 B4 00 00 00 00 00 00  00 A0 9D 51 0D 0C 00 00  ........ ...Q....
  [020] 00 0C 00 0E 00 70 67 26  01 16 00 18 00 78 C1 DF  .....pg& .....x..
  [030] 0B 16 00 18 00 28 62 78  01 C4 65 85 9F 32 BA 83  .....(bx ..e..2..
  [040] 49 89 E2 3B 2C BC 78 41  1B 28 FE AD 0B 07 00 00  I..;,.xA .(......
  [050] 00 00 00 00 00 06 00 00  00 45 00 53 00 41 00 42  ........ .E.S.A.B
  [060] 00 53 00 41 00 0C 00 00  00 00 00 00 00 0B 00 00  .S.A.... ........
  [070] 00 73 00 61 00 2E 00 65  00 73 00 61 00 62 00 2E  .s.a...e .s.a.b..
  [080] 00 6F 00 72 00 67 00 00  00 0C 00 00 00 00 00 00  .o.r.g.. ........
  [090] 00 0B 00 00 00 73 00 61  00 2E 00 65 00 73 00 61  .....s.a ...e.s.a
  [0A0] 00 62 00 2E 00 6F 00 72  00 67 00 00 00 04 00 00  .b...o.r .g......
  [0B0] 00 01 04 00 00 00 00 00  05 15 00 00 00 E5 DC AC  ........ ........
  [0C0] A1 FF E1 BB 42 A4 9D DD  4A 00 00 00 00           ....B... J....
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:cli_signing_trans_stop(556)
  cli_signing_trans_stop: freeing mid = 12, reply_seq_num = 19, send_seq_num = 18 data->send_seq_num = 20
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84)
  000000 smb_io_rpc_hdr rpc_hdr   
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0000 major     : 05
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0001 minor     : 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0002 pkt_type  : 02
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0003 flags     : 03
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0004 pack_type0: 10
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0005 pack_type1: 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0006 pack_type2: 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0007 pack_type3: 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
      0008 frag_len  : 00cc
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
      000a auth_len  : 0000
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
      000c call_id   : 00000005
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84)
  000010 smb_io_rpc_hdr_resp rpc_hdr_resp
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
      0010 alloc_hint: 000000b4
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
      0014 context_id: 0000
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0016 cancel_ct : 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
      0017 reserved  : 00
[2006/06/28 11:51:53, 10] rpc_client/cli_pipe.c:cli_pipe_validate_current_pdu(577)
  cli_pipe_validate_current_pdu: got pdu len 204, data_len 180, ss_len 0
[2006/06/28 11:51:53, 10] rpc_client/cli_pipe.c:rpc_api_pipe(843)
  rpc_api_pipe: got PDU len of 204 at offset 0
[2006/06/28 11:51:53, 10] rpc_client/cli_pipe.c:rpc_api_pipe(894)
  rpc_api_pipe: Remote machine ARBASSRV01 pipe \lsarpc fnum 0xc00d returned 360 bytes.
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_debug(84)
  000000 lsa_io_r_query_info2 
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
      0000 ptr: 0d519da0
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
      0004 info_class: 000c
[2006/06/28 11:51:53, 6] rpc_parse/parse_prs.c:prs_debug(84)
      000006 lsa_io_dns_dom_info info12
[2006/06/28 11:51:53, 7] rpc_parse/parse_prs.c:prs_debug(84)
          000008 smb_io_unihdr nb_name
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
              0008 uni_str_len: 000c
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
              000a uni_max_len: 000e
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
              000c buffer     : 01266770
[2006/06/28 11:51:53, 7] rpc_parse/parse_prs.c:prs_debug(84)
          000010 smb_io_unihdr dns_name
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
              0010 uni_str_len: 0016
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
              0012 uni_max_len: 0018
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
              0014 buffer     : 0bdfc178
[2006/06/28 11:51:53, 7] rpc_parse/parse_prs.c:prs_debug(84)
          000018 smb_io_unihdr forest
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
              0018 uni_str_len: 0016
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
              001a uni_max_len: 0018
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
              001c buffer     : 01786228
[2006/06/28 11:51:53, 7] rpc_parse/parse_prs.c:prs_debug(84)
          000020 smb_io_uuid dom_guid
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
              0020 data   : 9f8565c4
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
              0024 data   : ba32
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint16(674)
              0026 data   : 4983
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8s(819)
              0028 data   : 89 e2 
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8s(819)
              002a data   : 3b 2c bc 78 41 1b 
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
          0030 dom_sid: 0badfe28
[2006/06/28 11:51:53, 7] rpc_parse/parse_prs.c:prs_debug(84)
          000034 smb_io_unistr2 nb_name
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
              0034 uni_max_len: 00000007
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
              0038 offset     : 00000000
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
              003c uni_str_len: 00000006
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:dbg_rw_punival(904)
              0040 buffer     : E.S.A.B.S.A.
[2006/06/28 11:51:53, 7] rpc_parse/parse_prs.c:prs_debug(84)
          00004c smb_io_unistr2 dns_name
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
              004c uni_max_len: 0000000c
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
              0050 offset     : 00000000
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
              0054 uni_str_len: 0000000b
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:dbg_rw_punival(904)
              0058 buffer     : s.a...e.s.a.b...o.r.g.
[2006/06/28 11:51:53, 7] rpc_parse/parse_prs.c:prs_debug(84)
          00006e smb_io_unistr2 forest
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
              0070 uni_max_len: 0000000c
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
              0074 offset     : 00000000
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
              0078 uni_str_len: 0000000b
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:dbg_rw_punival(904)
              007c buffer     : s.a...e.s.a.b...o.r.g.
[2006/06/28 11:51:53, 7] rpc_parse/parse_prs.c:prs_debug(84)
          000092 smb_io_dom_sid2 dom_sid
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32(703)
              0094 num_auths: 00000004
[2006/06/28 11:51:53, 8] rpc_parse/parse_prs.c:prs_debug(84)
              000098 smb_io_dom_sid sid
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
                  0098 sid_rev_num: 01
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
                  0099 num_auths  : 04
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
                  009a id_auth[0] : 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
                  009b id_auth[1] : 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
                  009c id_auth[2] : 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
                  009d id_auth[3] : 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
                  009e id_auth[4] : 00
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint8(614)
                  009f id_auth[5] : 05
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_uint32s(959)
                  00a0 sub_auths : 00000015 a1acdce5 42bbe1ff 4add9da4 
[2006/06/28 11:51:53, 5] rpc_parse/parse_prs.c:prs_ntstatus(762)
      00b0 status: NT_STATUS_OK
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:simple_packet_signature(270)
  simple_packet_signature: sequence number 20
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:client_sign_outgoing_message(340)
  client_sign_outgoing_message: sent SMB signature of
[2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058)
  [000] 1A A2 45 9E 34 15 E5 D0                           ..E.4... 
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:store_sequence_for_reply(74)
  store_sequence_for_reply: stored seq = 21 mid = 13
[2006/06/28 11:51:53, 6] libsmb/clientgen.c:write_socket(132)
  write_socket(3,45)
[2006/06/28 11:51:53, 6] libsmb/clientgen.c:write_socket(135)
  write_socket(3,45) wrote 45
[2006/06/28 11:51:53, 10] lib/util_sock.c:read_smb_length_return_keepalive(618)
  got smb length of 35
[2006/06/28 11:51:53, 5] lib/util.c:show_msg(454)
[2006/06/28 11:51:53, 5] lib/util.c:show_msg(464)
  size=35
  smb_com=0x4
  smb_rcls=0
  smb_reh=0
  smb_err=0
  smb_flg=136
  smb_flg2=55301
  smb_tid=20484
  smb_pid=11598
  smb_uid=38912
  smb_mid=13
  smt_wct=0
  smb_bcc=0
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:get_sequence_for_reply(87)
  get_sequence_for_reply: found seq = 21 mid = 13
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:simple_packet_signature(270)
  simple_packet_signature: sequence number 21
[2006/06/28 11:51:53, 10] libsmb/smb_signing.c:client_check_incoming_message(416)
  client_check_incoming_message: seq 21: got good SMB signature of
[2006/06/28 11:51:53, 10] lib/util.c:dump_data(2058)
  [000] 85 F3 DD EF DE 8F AF 12                           ........ 
[2006/06/28 11:51:53, 10] libsmb/clientgen.c:cli_rpc_pipe_close(383)
  cli_rpc_pipe_close: closed pipe \lsarpc to machine ARBASSRV01
[2006/06/28 11:51:53, 5] nsswitch/winbindd_cache.c:get_cache(123)
  get_cache: Setting ADS methods for domain ESABSA
*** buffer overflow detected ***: /usr/sbin/winbindd terminated
======= Backtrace: =========
/lib/libc.so.6(__chk_fail+0x41)[0xb7d9db31]
/lib/libc.so.6[0xb7d9d533]
/lib/libc.so.6(__snprintf_chk+0x37)[0xb7d9d417]
/usr/sbin/winbindd[0x8004163a]
/usr/sbin/winbindd(tdb_traverse+0xf0)[0x800cdc90]
/usr/sbin/winbindd(wcache_flush_cache+0xc0)[0x8003e220]
/usr/sbin/winbindd[0x8003e43b]
/usr/sbin/winbindd[0x80042eff]
/usr/sbin/winbindd[0x80058dc5]
/usr/sbin/winbindd(run_events+0x6d)[0x800d15fd]
/usr/sbin/winbindd[0x80057f90]
/usr/sbin/winbindd(init_child_connection+0x2a3)[0x8003c463]
/usr/sbin/winbindd(async_domain_request+0xb6)[0x800597e6]
/usr/sbin/winbindd(rescan_trusted_domains+0x110)[0x8003cc60]
/usr/sbin/winbindd(main+0x66d)[0x80032bfd]
/lib/libc.so.6(__libc_start_main+0xdc)[0xb7ce387c]
/usr/sbin/winbindd[0x80031541]
======= Memory map: ========
80000000-801f0000 r-xp 00000000 03:01 130495     /usr/sbin/winbindd
801f0000-801fb000 rw-p 001ef000 03:01 130495     /usr/sbin/winbindd
801fb000-802e6000 rw-p 801fb000 00:00 0          [heap]
b78ce000-b78d8000 r-xp 00000000 03:01 26936      /lib/libgcc_s.so.1
b78d8000-b78d9000 rw-p 00009000 03:01 26936      /lib/libgcc_s.so.1
b78ec000-b7af8000 rw-s 00000000 03:01 147159     /var/lib/samba/winbindd_cache.tdb
b7af8000-b7afc000 rw-s 00000000 03:01 147152     /var/lib/samba/netsamlogon_cache.tdb
b7afc000-b7afe000 rw-s 00000000 03:01 147146     /var/lib/samba/winbindd_idmap.tdb
b7afe000-b7b00000 rw-s 00000000 03:01 146888     /var/lib/samba/gencache.tdb
b7b00000-b7b02000 rw-s 00000000 03:01 147030     /etc/samba/secrets.tdb
b7b02000-b7b12000 r--s 00000000 03:01 89996      /usr/lib/samba/valid.dat
b7b12000-b7b32000 r--s 00000000 03:01 89994      /usr/lib/samba/lowcase.dat
b7b32000-b7b52000 r--s 00000000 03:01 89995      /usr/lib/samba/upcase.dat
b7b52000-b7b54000 rw-p b7b52000 00:00 0 
b7b54000-b7c63000 r-xp 00000000 03:01 43293      /usr/lib/libcrypto.so.0.9.8
b7c63000-b7c77000 rw-p 0010f000 03:01 43293      /usr/lib/libcrypto.so.0.9.8
b7c77000-b7c7a000 rw-p b7c77000 00:00 0 
b7c7a000-b7cb3000 r-xp 00000000 03:01 43294      /usr/lib/libssl.so.0.9.8
b7cb3000-b7cb7000 rw-p 00038000 03:01 43294      /usr/lib/libssl.so.0.9.8
b7cb7000-b7cb8000 rw-p b7cb7000 00:00 0 
b7cb8000-b7ccd000 r-xp 00000000 03:01 33114      /usr/lib/libsasl2.so.2.0.21
b7ccd000-b7cce000 rw-p 00014000 03:01 33114      /usr/lib/libsasl2.so.2.0.21
b7cce000-b7de7000 r-xp 00000000 03:01 15328      /lib/libc-2.4.so
b7de7000-b7de9000 r--p 00118000 03:01 15328      /lib/libc-2.4.so
b7de9000-b7deb000 rw-p 0011a000 03:01 15328      /lib/libc-2.4.so
b7deb000-b7dee000 rw-p b7deb000 00:00 0 
b7dee000-b7def000 r-xp 00000000 03:01 26944      /lib/libnscd.so.1.0.0
b7def000-b7df0000 rw-p 00000000 03:01 26944      /lib/libnscd.so.1.0.0
b7df0000-b7dfb000 r-xp 00000000 03:01 47118      /usr/lib/liblber-2.3.so.0.2.7
b7dfb000-b7dfc000 rw-p 0000a000 03:01 47118      /usr/lib/liblber-2.3.so.0.2.7
b7dfc000-b7e31000 r-xp 00000000 03:01 47120      /usr/lib/libldap-2.3.so.0.2.7
b7e31000-b7e32000 rw-p 00035000 03:01 47120      /usr/lib/libldap-2.3.so.0.2.7
b7e32000-b7e33000 rw-p b7e32000 00:00 0 
b7e33000-b7e35000 r-xp 00000000 03:01 28507      /lib/libcom_err.so.2.1
b7e35000-b7e36000 rw-p 00001000 03:01 28507      /lib/libcom_err.so.2.1
b7e36000-b7e38000 r-xp 00000000 03:01 34693      /usr/lib/libkrb5support.so.0.0
b7e38000-b7e39000 rw-p 00002000 03:01 34693      /usr/lib/libkrb5support.so.0.0
b7e39000-b7e5b000 r-xp 00000000 03:01 34681      /usr/lib/libk5crypto.so.3.0
b7e5b000-b7e5c000 rw-p 00022000 03:01 34681      /usr/lib/libk5crypto.so.3.0
b7e5c000-b7ec4000 r-xp 00000000 03:01 34691      /usr/lib/libkrb5.so.3.2
b7ec4000-b7ec6000 rw-p 00068000 03:01 34691      /usr/lib/libkrb5.so.3.2
b7ec6000-b7edc000 r-xp 00000000 03:01 34677      /usr/lib/libgssapi_krb5.so.2.2
b7edc000-b7edd000 rw-p 00015000 03:01 34677      /usr/lib/libgssapi_krb5.so.2.2
b7edd000-b7ee4000 r-xp 00000000 03:01 27244      /usr/lib/libpopt.so.0.0.0
b7ee4000-b7ee5000 rw-p 00006000 03:01 27244      /usr/lib/libpopt.so.0.0.0
b7ee5000-b7ee6000 rw-p b7ee5000 00:00 0 
b7ee6000-b7ee8000 r-xp 00000000 03:01 15334      /lib/libdl-2.4.so
b7ee8000-b7eea000 rw-p 00001000 03:01 15334      /lib/libdl-2.4.so
b7eea000-b7efb000 r-xp 00000000 03:01 15339      /lib/libnsl-2.4.so
b7efb000-b7efd000 rw-p 00010000 03:01 15339      /lib/libnsl-2.4.so
b7efd000-b7eff000 rw-p b7efd000 00:00 0 
b7eff000-b7f0e000 r-xp 00000000 03:01 15356      /lib/libresolv-2.4.so
b7f0e000-b7f10000 rw-p 0000e000 03:01 15356      /lib/libresolv-2.4.so
b7f10000-b7f12000 rw-p b7f10000 00:00 0 
b7f12000-b7f1b000 r-xp 00000000 03:01 15332      /lib/libcrypt-2.4.so
b7f1b000-b7f1e000 rw-p 00008000 03:01 15332      /lib/libcrypt-2.4.so
b7f1e000-b7f45000 rw-p b7f1e000 00:00 0 
b7f45000-b7f49000 rw-s 00000000 03:01 147151     /var/lib/samba/messages.tdb
b7f49000-b7f4b000 r-xp 00000000 03:01 23522      /usr/lib/gconv/IBM850.so
b7f4b000-b7f4d000 rw-p 00001000 03:01 23522      /usr/lib/gconv/IBM850.so
b7f4d000-b7f4f000 r-xp 00000000 03:01 23622      /usr/lib/gconv/UTF-16.so
b7f4f000-b7f51000 rw-p 00001000 03:01 23622      /usr/lib/gconv/UTF-16.so
b7f51000-b7f58000 r--s 00000000 03:01 23627      /usr/lib/gconv/gconv-modules.cache
b7f58000-b7f59000 rw-p b7f58000 00:00 0 
b7f59000-b7f73000 r-xp 00000000 03:01 15321      /lib/ld-2.4.so
b7f73000-b7f75000 rw-p 00019000 03:01 15321      /lib/ld-2.4.so
bfa6a000-bfa80000 rw-p bfa6a000 00:00 0          [stack]
ffffe000-fffff000 ---p 00000000 00:00 0          [vdso]
[2006/06/28 11:51:53, 0] lib/fault.c:fault_report(36)
  ===============================================================
[2006/06/28 11:51:53, 0] lib/fault.c:fault_report(37)
  INTERNAL ERROR: Signal 6 in pid 11598 (3.0.22-11-SUSE-CODE10)
  Please read the Trouble-Shooting section of the Samba3-HOWTO
[2006/06/28 11:51:53, 0] lib/fault.c:fault_report(39)
  
  From: http://www.samba.org/samba/docs/Samba3-HOWTO.pdf
[2006/06/28 11:51:53, 0] lib/fault.c:fault_report(40)
  ===============================================================
[2006/06/28 11:51:53, 0] lib/util.c:smb_panic2(1554)
  PANIC: internal error
[2006/06/28 11:51:53, 0] lib/util.c:smb_panic2(1562)
  BACKTRACE: 23 stack frames:
   #0 /usr/sbin/winbindd(smb_panic2+0x8a) [0x800b699a]
   #1 /usr/sbin/winbindd(smb_panic+0x19) [0x800b6bf9]
   #2 /usr/sbin/winbindd [0x800a0f52]
   #3 [0xffffe420]
   #4 /lib/libc.so.6(abort+0x103) [0xb7cf7ea3]
   #5 /lib/libc.so.6 [0xb7d2bf8b]
   #6 /lib/libc.so.6(__chk_fail+0x41) [0xb7d9db31]
   #7 /lib/libc.so.6 [0xb7d9d533]
   #8 /lib/libc.so.6(__snprintf_chk+0x37) [0xb7d9d417]
   #9 /usr/sbin/winbindd [0x8004163a]
   #10 /usr/sbin/winbindd(tdb_traverse+0xf0) [0x800cdc90]
   #11 /usr/sbin/winbindd(wcache_flush_cache+0xc0) [0x8003e220]
   #12 /usr/sbin/winbindd [0x8003e43b]
   #13 /usr/sbin/winbindd [0x80042eff]
   #14 /usr/sbin/winbindd [0x80058dc5]
   #15 /usr/sbin/winbindd(run_events+0x6d) [0x800d15fd]
   #16 /usr/sbin/winbindd [0x80057f90]
   #17 /usr/sbin/winbindd(init_child_connection+0x2a3) [0x8003c463]
   #18 /usr/sbin/winbindd(async_domain_request+0xb6) [0x800597e6]
   #19 /usr/sbin/winbindd(rescan_trusted_domains+0x110) [0x8003cc60]
   #20 /usr/sbin/winbindd(main+0x66d) [0x80032bfd]
   #21 /lib/libc.so.6(__libc_start_main+0xdc) [0xb7ce387c]
   #22 /usr/sbin/winbindd [0x80031541]
Comment 1 Guenther Deschner 2006-06-28 10:24:06 UTC
This has been fixed in subversion (http://websvn.samba.org/cgi-bin/viewcvs.cgi?rev=15632&view=rev) and is fixed in all packages available from ftp.suse.com/pub/projects/samba.