API tools faq
paste
Guest User

Untitled

a guest
Jan 22nd, 2018
116
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 10.49 KB | None | 0 0
raw download clone embed print report
  1. smbd version 4.7.1 started.
  2. Copyright Andrew Tridgell and the Samba Team 1992-2017
  3. Registered MSG_REQ_POOL_USAGE
  4. Registered MSG_REQ_DMALLOC_MARK and LOG_CHANGED
  5. lp_load_ex: refreshing parameters
  6. Initialising global parameters
  7. rlimit_max: increasing rlimit_max (1024) to minimum Windows limit (16384)
  8. Processing section "[global]"
  9. Processing section "[AWSVFS]"
  10. adding IPC service
  11. added interface docker0 ip=172.17.0.1 bcast=172.17.255.255 netmask=255.255.0.0
  12. added interface eth0 ip=192.168.10.94 bcast=192.168.10.255 netmask=255.255.255.0
  13. loaded services
  14. INFO: Profiling support unavailable in this build.
  15. Stopped due to shared library event (no libraries added or removed)
  16. Stopped due to shared library event:
  17. Inferior loaded /lib/x86_64-linux-gnu/libnss_compat.so.2
  18. Loaded '/lib/x86_64-linux-gnu/libnss_compat.so.2'. Symbols loaded.
  19. Stopped due to shared library event (no libraries added or removed)
  20. Stopped due to shared library event:
  21. Inferior loaded /lib/x86_64-linux-gnu/libnss_nis.so.2
  22. /lib/x86_64-linux-gnu/libnss_files.so.2
  23. Loaded '/lib/x86_64-linux-gnu/libnss_nis.so.2'. Symbols loaded.
  24. Loaded '/lib/x86_64-linux-gnu/libnss_files.so.2'. Symbols loaded.
  25. Failed to fetch domain sid for WORKGROUP
  26. Failed to fetch domain sid for WORKGROUP
  27. Initialise the svcctl registry keys if needed.
  28. Initialise the eventlog registry keys if needed.
  29. reloading printcap cache
  30. reload status: ok
  31. reloading printcap cache
  32. reload status: ok
  33. waiting for connections
  34. Allowed connection from 192.168.10.71 (192.168.10.71)
  35. init_oplocks: initializing messages.
  36. Transaction 0 of length 159 (0 toread)
  37. switch message SMBnegprot (pid 26793) conn 0x0
  38. Stopped due to shared library event (no libraries added or removed)
  39. Stopped due to shared library event:
  40. Inferior loaded /usr/lib/x86_64-linux-gnu/gconv/IBM850.so
  41. Loaded '/usr/lib/x86_64-linux-gnu/gconv/IBM850.so'. Symbols loaded.
  42. Stopped due to shared library event (no libraries added or removed)
  43. Stopped due to shared library event:
  44. Inferior loaded /usr/lib/x86_64-linux-gnu/gconv/UTF-16.so
  45. Loaded '/usr/lib/x86_64-linux-gnu/gconv/UTF-16.so'. Symbols loaded.
  46. Requested protocol [PC NETWORK PROGRAM 1.0]
  47. Requested protocol [LANMAN1.0]
  48. Requested protocol [Windows for Workgroups 3.1a]
  49. Requested protocol [LM1.2X002]
  50. Requested protocol [LANMAN2.1]
  51. Requested protocol [NT LM 0.12]
  52. Requested protocol [SMB 2.002]
  53. Requested protocol [SMB 2.???]
  54. Selected protocol SMB2_FF
  55. Stopped due to shared library event (no libraries added or removed)
  56. Stopped due to shared library event:
  57. Inferior loaded /usr/local/samba/lib/gensec/krb5.so
  58. Loaded '/usr/local/samba/lib/gensec/krb5.so'. Symbols loaded.
  59. GENSEC backend 'gssapi_spnego' registered
  60. GENSEC backend 'gssapi_krb5' registered
  61. GENSEC backend 'gssapi_krb5_sasl' registered
  62. GENSEC backend 'spnego' registered
  63. GENSEC backend 'schannel' registered
  64. GENSEC backend 'naclrpc_as_system' registered
  65. GENSEC backend 'sasl-EXTERNAL' registered
  66. GENSEC backend 'ntlmssp' registered
  67. GENSEC backend 'ntlmssp_resume_ccache' registered
  68. GENSEC backend 'http_basic' registered
  69. GENSEC backend 'http_ntlm' registered
  70. GENSEC backend 'krb5' registered
  71. GENSEC backend 'fake_gssapi_krb5' registered
  72. Selected protocol SMB 2.???
  73. Selected protocol SMB3_11
  74. Got NTLMSSP neg_flags=0xe2088297
  75. Got user=[noone] domain=[NRUBIN0470-CPC] workstation=[NRUBIN0470-CPC] len1=24 len2=260
  76. lp_load_ex: refreshing parameters
  77. Initialising global parameters
  78. Processing section "[global]"
  79. Processing section "[AWSVFS]"
  80. adding IPC service
  81. check_ntlm_password: Checking password for unmapped user [NRUBIN0470-CPC][noone]@[NRUBIN0470-CPC] with the new password interface
  82. check_ntlm_password: mapped user is: [NRUBIN0470-CPC][noone]@[NRUBIN0470-CPC]
  83. check_sam_security: Couldn't find user 'noone' in passdb.
  84. check_ntlm_password: Authentication for user [noone] -> [noone] FAILED with error NT_STATUS_NO_SUCH_USER, authoritative=1
  85. Auth: [SMB2,(null)] user [NRUBIN0470-CPC][noone] at [ב', 22 ינו 2018 08:10:03.076238 GMT] with [NTLMv2] status [NT_STATUS_NO_SUCH_USER] workstation [NRUBIN0470-CPC] remote host [ipv4:192.168.10.71:52554] mapped to [NRUBIN0470-CPC][noone]. local host [ipv4:192.168.10.94:445]
  86. log_no_json: JSON auth logs not available unless compiled with jansson
  87. No such user noone [NRUBIN0470-CPC] - using guest account
  88. Allowed connection from 192.168.10.71 (192.168.10.71)
  89. Connect path is '/tmp' for service [IPC$]
  90. Initialising default vfs hooks
  91. Initialising custom vfs hooks from [/[Default VFS]/]
  92. nrubin0470-cpc (ipv4:192.168.10.71:52554) connect to service IPC$ initially as user nobody (uid=65534, gid=65534) (pid 26793)
  93. api_pipe_bind_req: wkssvc -> wkssvc rpc service
  94. check_bind_req for wkssvc context_id=0
  95. check_bind_req: wkssvc -> wkssvc rpc service
  96. api_rpcTNP: rpc command: WKSSVC_NETWKSTAGETINFO
  97. api_pipe_bind_req: srvsvc -> srvsvc rpc service
  98. check_bind_req for srvsvc context_id=0
  99. check_bind_req: srvsvc -> srvsvc rpc service
  100. api_rpcTNP: rpc command: SRVSVC_NETSRVGETINFO
  101. api_pipe_bind_req: wkssvc -> wkssvc rpc service
  102. check_bind_req for wkssvc context_id=0
  103. check_bind_req: wkssvc -> wkssvc rpc service
  104. api_rpcTNP: rpc command: WKSSVC_NETWKSTAGETINFO
  105. api_pipe_bind_req: srvsvc -> srvsvc rpc service
  106. check_bind_req for srvsvc context_id=0
  107. check_bind_req: srvsvc -> srvsvc rpc service
  108. api_rpcTNP: rpc command: SRVSVC_NETSRVGETINFO
  109. api_pipe_bind_req: srvsvc -> srvsvc rpc service
  110. check_bind_req for srvsvc context_id=0
  111. check_bind_req: srvsvc -> srvsvc rpc service
  112. api_rpcTNP: rpc command: SRVSVC_NETSHAREENUMALL
  113. nrubin0470-cpc (ipv4:192.168.10.71:52554) closed connection to service IPC$
  114.  
  115. [global]
  116. map to guest = Bad User
  117. guest account = nobody
  118. guest only = yes
  119. log file = /var/log/samba/%m
  120. log level = 3
  121.  
  122. [AWSVFS]
  123. comment = AWS VFS module
  124. path = /home/noone/share
  125. guest ok = yes
  126. read only = no
  127.  
  128. 3.8737777 192.168.10.94 192.168.10.71 WKST WKST:NetrWkstaGetInfo Response, ReturnValue=0 {MSRPC:21, SMB2:20, SMBOverTCP:16, TCP:15, IPv4:35}
  129. 3.8738624 192.168.10.71 192.168.10.94 SMB2 SMB2:C CLOSE (0x6), FID=0xA3ABB877(wkssvc@#669) {SMB2:20, SMBOverTCP:16, TCP:15, IPv4:35}
  130. 3.8740914 192.168.10.94 192.168.10.71 SMB2 SMB2:R CLOSE (0x6), File=wkssvc@#669 {SMB2:20, SMBOverTCP:16, TCP:15, IPv4:35}
  131. 3.8743103 192.168.10.71 192.168.10.94 SMB2 SMB2:C CREATE (0x5), Sh(RWD), File=srvsvc@#685 {SMB2:22, SMBOverTCP:16, TCP:15, IPv4:35}
  132. 3.8746416 192.168.10.94 192.168.10.71 SMB2 SMB2:R CREATE (0x5), FID=0xAF9A7796(srvsvc@#685) {SMB2:22, SMBOverTCP:16, TCP:15, IPv4:35}
  133. 3.8747049 192.168.10.71 192.168.10.94 SMB2 SMB2:C QUERY INFORMATION (0x10), Class=FileStandardInformation (5), FID=0xAF9A7796(srvsvc@#685) {SMB2:22, SMBOverTCP:16, TCP:15, IPv4:35}
  134. 3.8749316 192.168.10.94 192.168.10.71 SMB2 SMB2:R QUERY INFORMATION (0x10), File=srvsvc@#685 {SMB2:22, SMBOverTCP:16, TCP:15, IPv4:35}
  135. 3.8750026 192.168.10.71 192.168.10.94 MSRPC MSRPC:c/o Bind: srvs(SRVS) UUID{4B324FC8-1670-01D3-1278-5A47BF6EE188} Call=0x2 Assoc Grp=0x0 Xmit=0x10B8 Recv=0x10B8 {MSRPC:23, SMB2:22, SMBOverTCP:16, TCP:15, IPv4:35}
  136. 3.8752435 192.168.10.94 192.168.10.71 SMB2 SMB2:R WRITE (0x9), File=srvsvc@#685 {SMB2:22, SMBOverTCP:16, TCP:15, IPv4:35}
  137. 3.8752999 192.168.10.71 192.168.10.94 SMB2 SMB2:C READ (0x8), FID=0xAF9A7796 (srvsvc@#685) , 0x400 bytes from offset 0 (0x0) {SMB2:22, SMBOverTCP:16, TCP:15, IPv4:35}
  138. 3.8756303 192.168.10.94 192.168.10.71 MSRPC MSRPC:c/o Bind Ack: Call=0x2 Assoc Grp=0x53F0 Xmit=0x10B8 Recv=0x10B8 {MSRPC:23, SMB2:22, SMBOverTCP:16, TCP:15, IPv4:35}
  139. 3.8756988 192.168.10.71 192.168.10.94 SRVS SRVS:NetrServerGetInfo Request, ServerName=\192.168.10.94 Level=101 {MSRPC:23, SMB2:22, SMBOverTCP:16, TCP:15, IPv4:35}
  140. 3.8760791 192.168.10.94 192.168.10.71 SRVS SRVS:NetrServerGetInfo Response, Status=ERROR_SUCCESS {MSRPC:23, SMB2:22, SMBOverTCP:16, TCP:15, IPv4:35}
  141. 3.8761586 192.168.10.71 192.168.10.94 SMB2 SMB2:C CLOSE (0x6), FID=0xAF9A7796(srvsvc@#685) {SMB2:22, SMBOverTCP:16, TCP:15, IPv4:35}
  142. 3.8764261 192.168.10.94 192.168.10.71 SMB2 SMB2:R CLOSE (0x6), File=srvsvc@#685 {SMB2:22, SMBOverTCP:16, TCP:15, IPv4:35}
  143. 3.9533802 192.168.10.71 192.168.10.94 SMB2 SMB2:C CREATE (0x5), Sh(RWD), File=srvsvc@#701 {SMB2:24, SMBOverTCP:16, TCP:15, IPv4:35}
  144. 3.9537679 192.168.10.94 192.168.10.71 SMB2 SMB2:R CREATE (0x5), FID=0x4FB4666E(srvsvc@#701) {SMB2:24, SMBOverTCP:16, TCP:15, IPv4:35}
  145. 3.9538780 192.168.10.71 192.168.10.94 SMB2 SMB2:C QUERY INFORMATION (0x10), Class=FileStandardInformation (5), FID=0x4FB4666E(srvsvc@#701) {SMB2:24, SMBOverTCP:16, TCP:15, IPv4:35}
  146. 3.9541882 192.168.10.94 192.168.10.71 SMB2 SMB2:R QUERY INFORMATION (0x10), File=srvsvc@#701 {SMB2:24, SMBOverTCP:16, TCP:15, IPv4:35}
  147. 3.9542911 192.168.10.71 192.168.10.94 MSRPC MSRPC:c/o Bind: srvs(SRVS) UUID{4B324FC8-1670-01D3-1278-5A47BF6EE188} Call=0x2 Assoc Grp=0x0 Xmit=0x10B8 Recv=0x10B8 {MSRPC:25, SMB2:24, SMBOverTCP:16, TCP:15, IPv4:35}
  148. 3.9546555 192.168.10.94 192.168.10.71 SMB2 SMB2:R WRITE (0x9), File=srvsvc@#701 {SMB2:24, SMBOverTCP:16, TCP:15, IPv4:35}
  149. 3.9547453 192.168.10.71 192.168.10.94 SMB2 SMB2:C READ (0x8), FID=0x4FB4666E (srvsvc@#701) , 0x400 bytes from offset 0 (0x0) {SMB2:24, SMBOverTCP:16, TCP:15, IPv4:35}
  150. 3.9551359 192.168.10.94 192.168.10.71 MSRPC MSRPC:c/o Bind Ack: Call=0x2 Assoc Grp=0x53F0 Xmit=0x10B8 Recv=0x10B8 {MSRPC:25, SMB2:24, SMBOverTCP:16, TCP:15, IPv4:35}
  151. 3.9552194 192.168.10.71 192.168.10.94 SRVS SRVS:NetrShareEnum Request, ServerName=\192.168.10.94 PreferedMaximumLength=4294967295 ResumeHandle=NULL {MSRPC:25, SMB2:24, SMBOverTCP:16, TCP:15, IPv4:35}
  152. 3.9557021 192.168.10.94 192.168.10.71 SRVS SRVS:NetrShareEnum Response, TotalEntries=3 ResumeHandle=NULL Status=ERROR_SUCCESS {MSRPC:25, SMB2:24, SMBOverTCP:16, TCP:15, IPv4:35}
  153. 3.9558167 192.168.10.71 192.168.10.94 SMB2 SMB2:C CLOSE (0x6), FID=0x4FB4666E(srvsvc@#701) {SMB2:24, SMBOverTCP:16, TCP:15, IPv4:35}
  154. 3.9561380 192.168.10.94 192.168.10.71 SMB2 SMB2:R CLOSE (0x6), File=srvsvc@#701 {SMB2:24, SMBOverTCP:16, TCP:15, IPv4:35}
  155. 14.5760160 192.168.10.71 192.168.10.94 SMB2 SMB2:C TREE DISCONNECT (0x4), TID=0xe5211280 {SMBOverTCP:16, TCP:15, IPv4:35}
  156. 14.5765348 192.168.10.94 192.168.10.71 SMB2 SMB2:R TREE DISCONNECT (0x4) {SMBOverTCP:16, TCP:15, IPv4:35}
  157. 14.5766266 192.168.10.71 192.168.10.94 SMB2 SMB2:C LOGOFF (0x2) {SMBOverTCP:16, TCP:15, IPv4:35}
  158. 14.5771544 192.168.10.94 192.168.10.71 SMB2 SMB2:R LOGOFF (0x2) {SMBOverTCP:16, TCP:15, IPv4:35}
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!