Re: [Samba] Samba send SPNEGO if Extended Security is ON
Help, anyone? Your responses will be greatly appreciated. Thanks! - Original Message From: Jewelyn Catingub [EMAIL PROTECTED] To: Jewelyn Catingub [EMAIL PROTECTED]; Gerald (Jerry) Carter [EMAIL PROTECTED] Cc: samba@lists.samba.org Sent: Thursday, April 24, 2008 10:00:04 PM Subject: Re: [Samba] Samba send SPNEGO if Extended Security is ON Hi Jerry, In section 4.1.1 of the SNIA CIFS tech reference, it is not explicitly says that extended security bit == spnego support. Is it right? - Original Message From: Jewelyn Catingub [EMAIL PROTECTED] To: Gerald (Jerry) Carter [EMAIL PROTECTED] Cc: samba@lists.samba.org Sent: Wednesday, April 23, 2008 6:48:20 AM Subject: Re: [Samba] Samba send SPNEGO if Extended Security is ON - Original Message From: Gerald (Jerry) Carter [EMAIL PROTECTED] To: Jewelyn Catingub [EMAIL PROTECTED] Cc: samba@lists.samba.org Sent: Tuesday, April 22, 2008 10:53:20 PM Subject: Re: [Samba] Samba send SPNEGO if Extended Security is ON -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Jewelyn Catingub wrote: - Original Message From: Gerald (Jerry) Carter [EMAIL PROTECTED] To: Jewelyn Catingub [EMAIL PROTECTED] Cc: samba@lists.samba.org Sent: Tuesday, April 22, 2008 8:40:23 PM Subject: Re: [Samba] Samba send SPNEGO if Extended Security is ON Jewelyn Catingub wrote: Thanks for your reply. But in Windows, we encountered Raw NTLMSSP (not wrapped by spnego) even if Extended Security bit is ON when there is no KDC in the workgroup. (Well, we are not sure if that was really the reason) Why is that so? Hmm...What clients ? Windows clients yes. I figured that. But what versions and service packs? Client: Windows XP SP2 Server: Windows 2003 Server cheers, jerry - -- = Samba--- http://www.samba.org Likewise Software - http://www.likewisesoftware.com What man is a man who does not make the world better? --Balian -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIDfvgIR7qMdg1EfYRAinKAJ4/7g8moK3Kq98kgK5ykcy/seJOfwCfXisi OU47EbjF9zbpRiqiJudLaH4= =4Vjh -END PGP SIGNATURE- Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now. http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now. Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now. http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba send SPNEGO if Extended Security is ON
Hi Jerry, In section 4.1.1 of the SNIA CIFS tech reference, it is not explicitly says that extended security bit == spnego support. Is it right? - Original Message From: Jewelyn Catingub [EMAIL PROTECTED] To: Gerald (Jerry) Carter [EMAIL PROTECTED] Cc: samba@lists.samba.org Sent: Wednesday, April 23, 2008 6:48:20 AM Subject: Re: [Samba] Samba send SPNEGO if Extended Security is ON - Original Message From: Gerald (Jerry) Carter [EMAIL PROTECTED] To: Jewelyn Catingub [EMAIL PROTECTED] Cc: samba@lists.samba.org Sent: Tuesday, April 22, 2008 10:53:20 PM Subject: Re: [Samba] Samba send SPNEGO if Extended Security is ON -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Jewelyn Catingub wrote: - Original Message From: Gerald (Jerry) Carter [EMAIL PROTECTED] To: Jewelyn Catingub [EMAIL PROTECTED] Cc: samba@lists.samba.org Sent: Tuesday, April 22, 2008 8:40:23 PM Subject: Re: [Samba] Samba send SPNEGO if Extended Security is ON Jewelyn Catingub wrote: Thanks for your reply. But in Windows, we encountered Raw NTLMSSP (not wrapped by spnego) even if Extended Security bit is ON when there is no KDC in the workgroup. (Well, we are not sure if that was really the reason) Why is that so? Hmm...What clients ? Windows clients yes. I figured that. But what versions and service packs? Client: Windows XP SP2 Server: Windows 2003 Server cheers, jerry - -- = Samba--- http://www.samba.org Likewise Software - http://www.likewisesoftware.com What man is a man who does not make the world better? --Balian -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIDfvgIR7qMdg1EfYRAinKAJ4/7g8moK3Kq98kgK5ykcy/seJOfwCfXisi OU47EbjF9zbpRiqiJudLaH4= =4Vjh -END PGP SIGNATURE- Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now. http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now. http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba send SPNEGO if Extended Security is ON
Thanks for your reply. But in Windows, we encountered Raw NTLMSSP (not wrapped by spnego) even if Extended Security bit is ON when there is no KDC in the workgroup. (Well, we are not sure if that was really the reason) Why is that so? - Original Message From: Gerald (Jerry) Carter [EMAIL PROTECTED] To: Jewelyn Catingub [EMAIL PROTECTED] Cc: samba@lists.samba.org Sent: Monday, April 21, 2008 10:18:19 PM Subject: Re: [Samba] Samba send SPNEGO if Extended Security is ON -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Jewelyn Catingub wrote: I've checked the samba code (sessetup) and found out that samba always send spnego packet when Extended Security capability is ON. (This can't be turned off/on ie. use spnego = false) Does it mean I can never connect to smb server that doesn't support spnego if Extended Security is supported by server? Is my understanding correct? The extended security bit == spnego support. See section 4.1.1 in the SNIA CIFS tech reference. cheers, jerry - -- = Samba--- http://www.samba.org Likewise Software - http://www.likewisesoftware.com What man is a man who does not make the world better? --Balian -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIDKIrIR7qMdg1EfYRAsTNAKCT1HGkR463ksmWGmvRYE31AJq0KgCfapcM GbAuxzGltsPLa5qIOhdiwqc= =0lTR -END PGP SIGNATURE- Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now. http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba send SPNEGO if Extended Security is ON
- Original Message From: Gerald (Jerry) Carter [EMAIL PROTECTED] To: Jewelyn Catingub [EMAIL PROTECTED] Cc: samba@lists.samba.org Sent: Tuesday, April 22, 2008 8:40:23 PM Subject: Re: [Samba] Samba send SPNEGO if Extended Security is ON -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Jewelyn Catingub wrote: Thanks for your reply. But in Windows, we encountered Raw NTLMSSP (not wrapped by spnego) even if Extended Security bit is ON when there is no KDC in the workgroup. (Well, we are not sure if that was really the reason) Why is that so? Hmm...What clients ? Windows clients cheers, jerry - -- = Samba--- http://www.samba.org Likewise Software - http://www.likewisesoftware.com What man is a man who does not make the world better? --Balian -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIDdy3IR7qMdg1EfYRAnErAKDf1MQHPNcq7Mtt8TKc22DKY5EcjwCg0Ue9 Ta/07h63sBNVc2Vs1pubMFA= =8Bw6 -END PGP SIGNATURE- Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now. http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba send SPNEGO if Extended Security is ON
- Original Message From: Gerald (Jerry) Carter [EMAIL PROTECTED] To: Jewelyn Catingub [EMAIL PROTECTED] Cc: samba@lists.samba.org Sent: Tuesday, April 22, 2008 10:53:20 PM Subject: Re: [Samba] Samba send SPNEGO if Extended Security is ON -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Jewelyn Catingub wrote: - Original Message From: Gerald (Jerry) Carter [EMAIL PROTECTED] To: Jewelyn Catingub [EMAIL PROTECTED] Cc: samba@lists.samba.org Sent: Tuesday, April 22, 2008 8:40:23 PM Subject: Re: [Samba] Samba send SPNEGO if Extended Security is ON Jewelyn Catingub wrote: Thanks for your reply. But in Windows, we encountered Raw NTLMSSP (not wrapped by spnego) even if Extended Security bit is ON when there is no KDC in the workgroup. (Well, we are not sure if that was really the reason) Why is that so? Hmm...What clients ? Windows clients yes. I figured that. But what versions and service packs? Client: Windows XP SP2 Server: Windows 2003 Server cheers, jerry - -- = Samba--- http://www.samba.org Likewise Software - http://www.likewisesoftware.com What man is a man who does not make the world better? --Balian -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIDfvgIR7qMdg1EfYRAinKAJ4/7g8moK3Kq98kgK5ykcy/seJOfwCfXisi OU47EbjF9zbpRiqiJudLaH4= =4Vjh -END PGP SIGNATURE- Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now. http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba send SPNEGO if Extended Security is ON
I've checked the samba code (sessetup) and found out that samba always send spnego packet when Extended Security capability is ON. (This can't be turned off/on ie. use spnego = false) Does it mean I can never connect to smb server that doesn't support spnego if Extended Security is supported by server? Is my understanding correct? Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now. http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[SAMBA] how to disable SPNEGO
How will I disable SPNEGO in my linux pc (Fedora w/ Samba 3.0.26a version installed acting as a client)? I also don't know what settings should I change in the Linux server (Fedora). When I joined the linux server and client in windows server workgroup w/o spnego the result is there is no extended security at all. (I did this by changing smb.conf workgroup) I only want NTLMSSP(Extended security) w/o SPNEGO. I also tried client use spnego = no and use spnego = no, but I don't see the effect. I've read in other post: | even though I tried to set client use spnego = no The applies only to Samba's client code and not the capability bits set by the server when replying to clients. Besides, you really should not disable spnego. Generally if it doesn't work it would be considered a bug. Thanks in advance. Looking for last minute shopping deals? Find them fast with Yahoo! Search. http://tools.search.yahoo.com/newsearch/category.php?category=shopping -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[SAMBA] smbtorture Failed in Windows 2003 server
Why does th following smbtorture test cases failed in Windows 2003 server using Fedora with Samba 3.0.26 installed? All other test cases succeed except these 4: EATEST, NBENCH, W2K, IOCTL And also, what are these test for? I want to know detailed description but I can't find detailed documents for all smbtorture testcases. 1. EATEST - test extended attribute 2. NBENCH - ? 3. W2K - test for new w2k calls, what w2k calls? 4. IOCTL - test I/O controls, what specific I/O controls? Thanks in advance. Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now. http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
