Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- [2011/07/26 12:04:02.467774, 3] smbd/oplock.c:895(init_oplocks)
- init_oplocks: initializing messages.
- [2011/07/26 12:04:02.467908, 3] smbd/oplock_linux.c:224(linux_init_kernel_oplocks)
- Linux kernel oplocks enabled
- [2011/07/26 12:04:02.467996, 3] smbd/process.c:1489(process_smb)
- Transaction 0 of length 72 (0 toread)
- [2011/07/26 12:04:02.468026, 2] smbd/reply.c:554(reply_special)
- netbios connect: name1=SOL 0x20 name2=COSSSLT07 0x0
- [2011/07/26 12:04:02.468062, 2] smbd/reply.c:565(reply_special)
- netbios connect: local=sol remote=cossslt07, name type = 0
- [2011/07/26 12:04:02.469234, 3] smbd/process.c:1489(process_smb)
- Transaction 0 of length 159 (0 toread)
- [2011/07/26 12:04:02.469282, 3] smbd/process.c:1298(switch_message)
- switch message SMBnegprot (pid 24641) conn 0x0
- [2011/07/26 12:04:02.469304, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.469391, 3] smbd/negprot.c:586(reply_negprot)
- Requested protocol [PC NETWORK PROGRAM 1.0]
- [2011/07/26 12:04:02.469412, 3] smbd/negprot.c:586(reply_negprot)
- Requested protocol [LANMAN1.0]
- [2011/07/26 12:04:02.469429, 3] smbd/negprot.c:586(reply_negprot)
- Requested protocol [Windows for Workgroups 3.1a]
- [2011/07/26 12:04:02.469444, 3] smbd/negprot.c:586(reply_negprot)
- Requested protocol [LM1.2X002]
- [2011/07/26 12:04:02.469462, 3] smbd/negprot.c:586(reply_negprot)
- Requested protocol [LANMAN2.1]
- [2011/07/26 12:04:02.469477, 3] smbd/negprot.c:586(reply_negprot)
- Requested protocol [NT LM 0.12]
- [2011/07/26 12:04:02.469492, 3] smbd/negprot.c:586(reply_negprot)
- Requested protocol [SMB 2.002]
- [2011/07/26 12:04:02.469514, 3] smbd/negprot.c:586(reply_negprot)
- Requested protocol [SMB 2.???]
- [2011/07/26 12:04:02.469696, 3] smbd/negprot.c:404(reply_nt1)
- using SPNEGO
- [2011/07/26 12:04:02.469741, 3] smbd/negprot.c:691(reply_negprot)
- Selected protocol NT LM 0.12
- [2011/07/26 12:04:02.471664, 3] smbd/process.c:1489(process_smb)
- Transaction 1 of length 142 (0 toread)
- [2011/07/26 12:04:02.471693, 3] smbd/process.c:1298(switch_message)
- switch message SMBsesssetupX (pid 24641) conn 0x0
- [2011/07/26 12:04:02.471710, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.471737, 3] smbd/sesssetup.c:1436(reply_sesssetup_and_X)
- wct=12 flg2=0xc807
- [2011/07/26 12:04:02.471766, 2] smbd/sesssetup.c:1391(setup_new_vc_session)
- setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources.
- [2011/07/26 12:04:02.471784, 3] smbd/sesssetup.c:1190(reply_sesssetup_and_X_spnego)
- Doing spnego session setup
- [2011/07/26 12:04:02.471801, 3] smbd/sesssetup.c:1232(reply_sesssetup_and_X_spnego)
- NativeOS=[] NativeLanMan=[] PrimaryDomain=[]
- [2011/07/26 12:04:02.471856, 3] smbd/sesssetup.c:806(reply_spnego_negotiate)
- reply_spnego_negotiate: Got secblob of size 40
- [2011/07/26 12:04:02.471888, 5] auth/auth.c:481(make_auth_context_subsystem)
- Making default auth method list for DC, security=user, encrypt passwords = yes
- [2011/07/26 12:04:02.471911, 5] auth/auth.c:46(smb_register_auth)
- Attempting to register auth backend sam
- [2011/07/26 12:04:02.471926, 5] auth/auth.c:58(smb_register_auth)
- Successfully added auth method 'sam'
- [2011/07/26 12:04:02.471941, 5] auth/auth.c:46(smb_register_auth)
- Attempting to register auth backend sam_ignoredomain
- [2011/07/26 12:04:02.471955, 5] auth/auth.c:58(smb_register_auth)
- Successfully added auth method 'sam_ignoredomain'
- [2011/07/26 12:04:02.471971, 5] auth/auth.c:46(smb_register_auth)
- Attempting to register auth backend unix
- [2011/07/26 12:04:02.471987, 5] auth/auth.c:58(smb_register_auth)
- Successfully added auth method 'unix'
- [2011/07/26 12:04:02.472002, 5] auth/auth.c:46(smb_register_auth)
- Attempting to register auth backend winbind
- [2011/07/26 12:04:02.472016, 5] auth/auth.c:58(smb_register_auth)
- Successfully added auth method 'winbind'
- [2011/07/26 12:04:02.472032, 5] auth/auth.c:46(smb_register_auth)
- Attempting to register auth backend wbc
- [2011/07/26 12:04:02.472047, 5] auth/auth.c:58(smb_register_auth)
- Successfully added auth method 'wbc'
- [2011/07/26 12:04:02.472061, 5] auth/auth.c:46(smb_register_auth)
- Attempting to register auth backend smbserver
- [2011/07/26 12:04:02.472076, 5] auth/auth.c:58(smb_register_auth)
- Successfully added auth method 'smbserver'
- [2011/07/26 12:04:02.472092, 5] auth/auth.c:46(smb_register_auth)
- Attempting to register auth backend trustdomain
- [2011/07/26 12:04:02.472106, 5] auth/auth.c:58(smb_register_auth)
- Successfully added auth method 'trustdomain'
- [2011/07/26 12:04:02.472120, 5] auth/auth.c:46(smb_register_auth)
- Attempting to register auth backend ntdomain
- [2011/07/26 12:04:02.472135, 5] auth/auth.c:58(smb_register_auth)
- Successfully added auth method 'ntdomain'
- [2011/07/26 12:04:02.472152, 5] auth/auth.c:46(smb_register_auth)
- Attempting to register auth backend guest
- [2011/07/26 12:04:02.472167, 5] auth/auth.c:58(smb_register_auth)
- Successfully added auth method 'guest'
- [2011/07/26 12:04:02.472181, 5] auth/auth.c:46(smb_register_auth)
- Attempting to register auth backend netlogond
- [2011/07/26 12:04:02.472198, 5] auth/auth.c:58(smb_register_auth)
- Successfully added auth method 'netlogond'
- [2011/07/26 12:04:02.472212, 5] auth/auth.c:383(load_auth_module)
- load_auth_module: Attempting to find an auth method to match guest
- [2011/07/26 12:04:02.472229, 5] auth/auth.c:408(load_auth_module)
- load_auth_module: auth method guest has a valid init
- [2011/07/26 12:04:02.472244, 5] auth/auth.c:383(load_auth_module)
- load_auth_module: Attempting to find an auth method to match sam
- [2011/07/26 12:04:02.472267, 5] auth/auth.c:408(load_auth_module)
- load_auth_module: auth method sam has a valid init
- [2011/07/26 12:04:02.472282, 5] auth/auth.c:383(load_auth_module)
- load_auth_module: Attempting to find an auth method to match winbind:trustdomain
- [2011/07/26 12:04:02.472316, 5] auth/auth.c:383(load_auth_module)
- load_auth_module: Attempting to find an auth method to match trustdomain
- [2011/07/26 12:04:02.472332, 5] auth/auth.c:408(load_auth_module)
- load_auth_module: auth method trustdomain has a valid init
- [2011/07/26 12:04:02.472346, 5] auth/auth.c:408(load_auth_module)
- load_auth_module: auth method winbind has a valid init
- [2011/07/26 12:04:02.472378, 3] libsmb/ntlmssp.c:65(debug_ntlmssp_flags)
- Got NTLMSSP neg_flags=0xe2088297
- [2011/07/26 12:04:02.472399, 5] auth/auth.c:97(get_ntlm_challenge)
- auth_get_challenge: module guest did not want to specify a challenge
- [2011/07/26 12:04:02.472414, 5] auth/auth.c:97(get_ntlm_challenge)
- auth_get_challenge: module sam did not want to specify a challenge
- [2011/07/26 12:04:02.472428, 5] auth/auth.c:97(get_ntlm_challenge)
- auth_get_challenge: module winbind did not want to specify a challenge
- [2011/07/26 12:04:02.472448, 5] auth/auth.c:132(get_ntlm_challenge)
- auth_context challenge created by random
- [2011/07/26 12:04:02.472463, 5] auth/auth.c:133(get_ntlm_challenge)
- challenge is:
- [2011/07/26 12:04:02.474144, 3] smbd/process.c:1489(process_smb)
- Transaction 2 of length 200 (0 toread)
- [2011/07/26 12:04:02.474176, 3] smbd/process.c:1298(switch_message)
- switch message SMBsesssetupX (pid 24641) conn 0x0
- [2011/07/26 12:04:02.474194, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.474216, 3] smbd/sesssetup.c:1436(reply_sesssetup_and_X)
- wct=12 flg2=0xc807
- [2011/07/26 12:04:02.474232, 2] smbd/sesssetup.c:1391(setup_new_vc_session)
- setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources.
- [2011/07/26 12:04:02.474247, 3] smbd/sesssetup.c:1190(reply_sesssetup_and_X_spnego)
- Doing spnego session setup
- [2011/07/26 12:04:02.474265, 3] smbd/sesssetup.c:1232(reply_sesssetup_and_X_spnego)
- NativeOS=[] NativeLanMan=[] PrimaryDomain=[]
- [2011/07/26 12:04:02.474301, 3] libsmb/ntlmssp.c:747(ntlmssp_server_auth)
- Got user=[] domain=[] workstation=[COSSSLT07] len1=1 len2=0
- [2011/07/26 12:04:02.474350, 5] auth/auth_util.c:211(make_user_info_map)
- Mapping user []\[] from workstation [COSSSLT07]
- [2011/07/26 12:04:02.474372, 5] auth/auth_util.c:232(make_user_info_map)
- Mapped domain from [] to [SOLAR] for user [] from workstation [COSSSLT07]
- [2011/07/26 12:04:02.474388, 5] auth/auth_util.c:122(make_user_info)
- attempting to make a user_info for ()
- [2011/07/26 12:04:02.474402, 5] auth/auth_util.c:132(make_user_info)
- making strings for 's user_info struct
- [2011/07/26 12:04:02.474418, 5] auth/auth_util.c:164(make_user_info)
- making blobs for 's user_info struct
- [2011/07/26 12:04:02.474433, 10] auth/auth_util.c:182(make_user_info)
- made an encrypted user_info for ()
- [2011/07/26 12:04:02.474448, 3] auth/auth.c:216(check_ntlm_password)
- check_ntlm_password: Checking password for unmapped user []\[]@[COSSSLT07] with the new password interface
- [2011/07/26 12:04:02.474464, 3] auth/auth.c:219(check_ntlm_password)
- check_ntlm_password: mapped user is: [SOLAR]\[]@[COSSSLT07]
- [2011/07/26 12:04:02.474479, 10] auth/auth.c:228(check_ntlm_password)
- check_ntlm_password: auth_context challenge created by random
- [2011/07/26 12:04:02.474493, 10] auth/auth.c:230(check_ntlm_password)
- challenge is:
- [2011/07/26 12:04:02.474570, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.474594, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(0) : conn_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.474611, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.474636, 5] passdb/pdb_interface.c:1473(lookup_global_sam_rid)
- lookup_global_sam_rid: looking up RID 514.
- [2011/07/26 12:04:02.474655, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.474670, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(0) : conn_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.474685, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.474854, 2] lib/smbldap.c:950(smbldap_open_connection)
- smbldap_open_connection: connection opened
- [2011/07/26 12:04:02.477791, 3] lib/smbldap.c:1166(smbldap_connect_system)
- ldap_connect_system: successful connection to the LDAP server
- [2011/07/26 12:04:02.480696, 4] passdb/pdb_ldap.c:1695(ldapsam_getsampwsid)
- ldapsam_getsampwsid: Unable to locate SID [S-1-5-21-1048866067-1567326443-2860397223-514] count=0
- [2011/07/26 12:04:02.483800, 2] passdb/pdb_ldap.c:2446(init_group_from_ldap)
- init_group_from_ldap: Entry found for group: 65534
- [2011/07/26 12:04:02.483848, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.483866, 5] passdb/pdb_interface.c:1595(pdb_default_lookup_rids)
- lookup_rids: Domain Guests:2
- [2011/07/26 12:04:02.483886, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.483912, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.483928, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(0) : conn_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.483943, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.484001, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.484049, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.484070, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(0) : conn_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.484085, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.484115, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.484138, 3] auth/auth.c:265(check_ntlm_password)
- check_ntlm_password: guest authentication for user [] succeeded
- [2011/07/26 12:04:02.484154, 5] auth/auth.c:304(check_ntlm_password)
- check_ntlm_password: guest authentication for user [] -> [] -> [nobody] succeeded
- [2011/07/26 12:04:02.484170, 5] auth/auth_util.c:2119(free_user_info)
- attempting to free (and zero) a user_info structure
- [2011/07/26 12:04:02.484184, 10] auth/auth_util.c:2123(free_user_info)
- structure was created for
- [2011/07/26 12:04:02.484209, 3] libsmb/ntlmssp_sign.c:343(ntlmssp_sign_init)
- NTLMSSP Sign/Seal - Initialising with flags:
- [2011/07/26 12:04:02.484224, 3] libsmb/ntlmssp.c:65(debug_ntlmssp_flags)
- Got NTLMSSP neg_flags=0xe2088215
- [2011/07/26 12:04:02.484256, 3] smbd/password.c:282(register_existing_vuid)
- register_existing_vuid: User name: nobody Real name: nobody
- [2011/07/26 12:04:02.484275, 3] smbd/password.c:292(register_existing_vuid)
- register_existing_vuid: UNIX uid 65534 is UNIX user nobody, and will be vuid 100
- [2011/07/26 12:04:02.485599, 3] smbd/process.c:1489(process_smb)
- Transaction 3 of length 76 (0 toread)
- [2011/07/26 12:04:02.485648, 3] smbd/process.c:1298(switch_message)
- switch message SMBtconX (pid 24641) conn 0x0
- [2011/07/26 12:04:02.485666, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.485770, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.485790, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(0) : conn_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.485805, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.485844, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.485889, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.485907, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(0) : conn_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.485921, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.485952, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.486015, 3] smbd/service.c:807(make_connection_snum)
- Connect path is '/tmp' for service [IPC$]
- [2011/07/26 12:04:02.486061, 3] smbd/vfs.c:97(vfs_init_default)
- Initialising default vfs hooks
- [2011/07/26 12:04:02.486087, 3] smbd/vfs.c:122(vfs_init_custom)
- Initialising custom vfs hooks from [/[Default VFS]/]
- [2011/07/26 12:04:02.486176, 3] lib/util_sid.c:228(string_to_sid)
- string_to_sid: Sid root does not start with 'S-'.
- [2011/07/26 12:04:02.486213, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.486230, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(0) : conn_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.486245, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.491128, 2] passdb/pdb_ldap.c:572(init_sam_from_ldap)
- init_sam_from_ldap: Entry found for user: root
- [2011/07/26 12:04:02.491286, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.491320, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(0) : conn_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.491339, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.491375, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.491460, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.491476, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(0) : conn_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.491491, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.491524, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.493314, 4] passdb/pdb_ldap.c:2562(ldapsam_getgroup)
- ldapsam_getgroup: Did not find group, filter was (&(objectClass=sambaGroupMapping)(gidNumber=0))
- [2011/07/26 12:04:02.493341, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.493360, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(0) : conn_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.493377, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.493410, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.493448, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.493468, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(0) : conn_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.493486, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.493519, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.493545, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.493573, 3] lib/util_sid.c:228(string_to_sid)
- string_to_sid: Sid @adm does not start with 'S-'.
- [2011/07/26 12:04:02.493919, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.493939, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(0) : conn_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.493953, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.497512, 2] passdb/pdb_ldap.c:2446(init_group_from_ldap)
- init_group_from_ldap: Entry found for group: 4
- [2011/07/26 12:04:02.497556, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.497656, 3] lib/util_sid.c:228(string_to_sid)
- string_to_sid: Sid @bdctechs does not start with 'S-'.
- [2011/07/26 12:04:02.497688, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.497705, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(0) : conn_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.497722, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.501281, 2] passdb/pdb_ldap.c:2446(init_group_from_ldap)
- init_group_from_ldap: Entry found for group: 65539
- [2011/07/26 12:04:02.501324, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.501356, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.501373, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(0) : conn_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.501392, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.501425, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.501459, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.501476, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(0) : conn_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.501493, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.501524, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.501551, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (65534, 65534) - sec_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.501590, 3] smbd/service.c:1070(make_connection_snum)
- cossslt07 (::ffff:172.16.14.118) connect to service IPC$ initially as user nobody (uid=65534, gid=65534) (pid 24641)
- [2011/07/26 12:04:02.501613, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.501638, 3] smbd/reply.c:865(reply_tcon_and_X)
- tconX service=IPC$
- [2011/07/26 12:04:02.502900, 3] smbd/process.c:1489(process_smb)
- Transaction 4 of length 108 (0 toread)
- [2011/07/26 12:04:02.502921, 3] smbd/process.c:1298(switch_message)
- switch message SMBntcreateX (pid 24641) conn 0xb7d0deb0
- [2011/07/26 12:04:02.502938, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (65534, 65534) - sec_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.503032, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(65534, 65534) : sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.503051, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(100) : conn_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.503066, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.503100, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (65534, 65534) - sec_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.503129, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(65534, 65534) : sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.503148, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(100) : conn_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.503162, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.503195, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (65534, 65534) - sec_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.504236, 3] smbd/process.c:1489(process_smb)
- Transaction 5 of length 76 (0 toread)
- [2011/07/26 12:04:02.504272, 3] smbd/process.c:1298(switch_message)
- switch message SMBtrans2 (pid 24641) conn 0xb7d0deb0
- [2011/07/26 12:04:02.505444, 3] smbd/process.c:1489(process_smb)
- Transaction 6 of length 184 (0 toread)
- [2011/07/26 12:04:02.505472, 3] smbd/process.c:1298(switch_message)
- switch message SMBwriteX (pid 24641) conn 0xb7d0deb0
- [2011/07/26 12:04:02.505525, 3] rpc_server/srv_pipe.c:1668(api_pipe_bind_req)
- api_pipe_bind_req: \PIPE\netlogon -> \PIPE\netlogon
- [2011/07/26 12:04:02.505549, 3] rpc_server/srv_pipe.c:998(check_bind_req)
- check_bind_req for \netlogon
- [2011/07/26 12:04:02.505592, 3] smbd/pipes.c:352(pipe_write_andx_done)
- writeX-IPC nwritten=116
- [2011/07/26 12:04:02.506690, 3] smbd/process.c:1489(process_smb)
- Transaction 7 of length 63 (0 toread)
- [2011/07/26 12:04:02.506726, 3] smbd/process.c:1298(switch_message)
- switch message SMBreadX (pid 24641) conn 0xb7d0deb0
- [2011/07/26 12:04:02.506762, 3] smbd/pipes.c:462(pipe_read_andx_done)
- readX-IPC min=1024 max=1024 nread=72
- [2011/07/26 12:04:02.507880, 3] smbd/process.c:1489(process_smb)
- Transaction 8 of length 160 (0 toread)
- [2011/07/26 12:04:02.507914, 3] smbd/process.c:1298(switch_message)
- switch message SMBwriteX (pid 24641) conn 0xb7d0deb0
- [2011/07/26 12:04:02.507947, 3] rpc_server/srv_pipe_hnd.c:344(free_pipe_context)
- free_pipe_context: destroying talloc pool of size 122
- [2011/07/26 12:04:02.507984, 3] rpc_server/srv_pipe.c:2415(api_rpcTNP)
- api_rpcTNP: rpc command: NETR_SERVERREQCHALLENGE
- [2011/07/26 12:04:02.508042, 3] rpc_server/srv_pipe_hnd.c:344(free_pipe_context)
- free_pipe_context: destroying talloc pool of size 0
- [2011/07/26 12:04:02.508070, 3] smbd/pipes.c:352(pipe_write_andx_done)
- writeX-IPC nwritten=92
- [2011/07/26 12:04:02.509176, 3] smbd/process.c:1489(process_smb)
- Transaction 9 of length 63 (0 toread)
- [2011/07/26 12:04:02.509199, 3] smbd/process.c:1298(switch_message)
- switch message SMBreadX (pid 24641) conn 0xb7d0deb0
- [2011/07/26 12:04:02.509231, 3] smbd/pipes.c:462(pipe_read_andx_done)
- readX-IPC min=1024 max=1024 nread=36
- [2011/07/26 12:04:02.510403, 3] smbd/process.c:1489(process_smb)
- Transaction 10 of length 200 (0 toread)
- [2011/07/26 12:04:02.510431, 3] smbd/process.c:1298(switch_message)
- switch message SMBwriteX (pid 24641) conn 0xb7d0deb0
- [2011/07/26 12:04:02.510458, 3] rpc_server/srv_pipe_hnd.c:344(free_pipe_context)
- free_pipe_context: destroying talloc pool of size 0
- [2011/07/26 12:04:02.510477, 3] rpc_server/srv_pipe.c:2415(api_rpcTNP)
- api_rpcTNP: rpc command: NETR_SERVERAUTHENTICATE3
- [2011/07/26 12:04:02.510515, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(65534, 65534) : sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.510537, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(100) : conn_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.510552, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.514693, 2] passdb/pdb_ldap.c:572(init_sam_from_ldap)
- init_sam_from_ldap: Entry found for user: cossslt07$
- [2011/07/26 12:04:02.514819, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.514840, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(100) : conn_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.514858, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.514898, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.514966, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.514983, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(100) : conn_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.514998, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.515028, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.519012, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.519036, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(100) : conn_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.519053, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.521909, 2] passdb/pdb_ldap.c:2446(init_group_from_ldap)
- init_group_from_ldap: Entry found for group: 421
- [2011/07/26 12:04:02.521951, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.521983, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.522001, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(100) : conn_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.522018, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.522041, 5] passdb/pdb_interface.c:1473(lookup_global_sam_rid)
- lookup_global_sam_rid: looking up RID 515.
- [2011/07/26 12:04:02.522060, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 3
- [2011/07/26 12:04:02.522090, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(100) : conn_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.522108, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 3
- [2011/07/26 12:04:02.524803, 4] passdb/pdb_ldap.c:1695(ldapsam_getsampwsid)
- ldapsam_getsampwsid: Unable to locate SID [S-1-5-21-1048866067-1567326443-2860397223-515] count=0
- [2011/07/26 12:04:02.527764, 2] passdb/pdb_ldap.c:2446(init_group_from_ldap)
- init_group_from_ldap: Entry found for group: 421
- [2011/07/26 12:04:02.527805, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.527824, 5] passdb/pdb_interface.c:1595(pdb_default_lookup_rids)
- lookup_rids: machines:2
- [2011/07/26 12:04:02.527843, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.527865, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.527882, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(100) : conn_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.527899, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.527933, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.527969, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.527988, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(100) : conn_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.528005, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.528035, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.528061, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (65534, 65534) - sec_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.528164, 2] ../libcli/auth/credentials.c:307(netlogon_creds_server_check_internal)
- credentials check failed
- [2011/07/26 12:04:02.528183, 0] rpc_server/srv_netlog_nt.c:714(_netr_ServerAuthenticate3)
- _netr_ServerAuthenticate3: netlogon_creds_server_check failed. Rejecting auth request from client COSSSLT07 machine account COSSSLT07$
- [2011/07/26 12:04:02.528243, 3] rpc_server/srv_pipe_hnd.c:344(free_pipe_context)
- free_pipe_context: destroying talloc pool of size 0
- [2011/07/26 12:04:02.528270, 3] smbd/pipes.c:352(pipe_write_andx_done)
- writeX-IPC nwritten=132
- [2011/07/26 12:04:02.529396, 3] smbd/process.c:1489(process_smb)
- Transaction 11 of length 63 (0 toread)
- [2011/07/26 12:04:02.529430, 3] smbd/process.c:1298(switch_message)
- switch message SMBreadX (pid 24641) conn 0xb7d0deb0
- [2011/07/26 12:04:02.529463, 3] smbd/pipes.c:462(pipe_read_andx_done)
- readX-IPC min=1024 max=1024 nread=44
- [2011/07/26 12:04:02.530846, 3] smbd/process.c:1489(process_smb)
- Transaction 12 of length 160 (0 toread)
- [2011/07/26 12:04:02.530869, 3] smbd/process.c:1298(switch_message)
- switch message SMBwriteX (pid 24641) conn 0xb7d0deb0
- [2011/07/26 12:04:02.530892, 3] rpc_server/srv_pipe_hnd.c:344(free_pipe_context)
- free_pipe_context: destroying talloc pool of size 0
- [2011/07/26 12:04:02.530911, 3] rpc_server/srv_pipe.c:2415(api_rpcTNP)
- api_rpcTNP: rpc command: NETR_SERVERREQCHALLENGE
- [2011/07/26 12:04:02.530940, 3] rpc_server/srv_pipe_hnd.c:344(free_pipe_context)
- free_pipe_context: destroying talloc pool of size 0
- [2011/07/26 12:04:02.530964, 3] smbd/pipes.c:352(pipe_write_andx_done)
- writeX-IPC nwritten=92
- [2011/07/26 12:04:02.532127, 3] smbd/process.c:1489(process_smb)
- Transaction 13 of length 63 (0 toread)
- [2011/07/26 12:04:02.532162, 3] smbd/process.c:1298(switch_message)
- switch message SMBreadX (pid 24641) conn 0xb7d0deb0
- [2011/07/26 12:04:02.532195, 3] smbd/pipes.c:462(pipe_read_andx_done)
- readX-IPC min=1024 max=1024 nread=36
- [2011/07/26 12:04:02.533339, 3] smbd/process.c:1489(process_smb)
- Transaction 14 of length 200 (0 toread)
- [2011/07/26 12:04:02.533368, 3] smbd/process.c:1298(switch_message)
- switch message SMBwriteX (pid 24641) conn 0xb7d0deb0
- [2011/07/26 12:04:02.533405, 3] rpc_server/srv_pipe_hnd.c:344(free_pipe_context)
- free_pipe_context: destroying talloc pool of size 0
- [2011/07/26 12:04:02.533424, 3] rpc_server/srv_pipe.c:2415(api_rpcTNP)
- api_rpcTNP: rpc command: NETR_SERVERAUTHENTICATE3
- [2011/07/26 12:04:02.533448, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(65534, 65534) : sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.533468, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(100) : conn_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.533483, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.537556, 2] passdb/pdb_ldap.c:572(init_sam_from_ldap)
- init_sam_from_ldap: Entry found for user: cossslt07$
- [2011/07/26 12:04:02.537676, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.537695, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(100) : conn_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.537712, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.537745, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.537806, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.537822, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(100) : conn_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.537837, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.537867, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.537893, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.537909, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(100) : conn_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.537923, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.537942, 5] passdb/pdb_interface.c:1473(lookup_global_sam_rid)
- lookup_global_sam_rid: looking up RID 515.
- [2011/07/26 12:04:02.537957, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 3
- [2011/07/26 12:04:02.537972, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(100) : conn_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.537987, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 3
- [2011/07/26 12:04:02.540638, 4] passdb/pdb_ldap.c:1695(ldapsam_getsampwsid)
- ldapsam_getsampwsid: Unable to locate SID [S-1-5-21-1048866067-1567326443-2860397223-515] count=0
- [2011/07/26 12:04:02.543539, 2] passdb/pdb_ldap.c:2446(init_group_from_ldap)
- init_group_from_ldap: Entry found for group: 421
- [2011/07/26 12:04:02.543581, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.543600, 5] passdb/pdb_interface.c:1595(pdb_default_lookup_rids)
- lookup_rids: machines:2
- [2011/07/26 12:04:02.543619, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.543640, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.543657, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(100) : conn_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.543673, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.543707, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.543738, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.543757, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(100) : conn_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.543774, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2
- [2011/07/26 12:04:02.543807, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.543839, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (65534, 65534) - sec_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.543933, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(65534, 65534) : sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.543966, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(100) : conn_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.543982, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.544073, 3] ../libcli/auth/schannel_state_tdb.c:68(schannel_store_session_key_tdb)
- schannel_store_session_key_tdb: stored schannel info with key SECRETS/SCHANNEL/COSSSLT07
- [2011/07/26 12:04:02.544103, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (65534, 65534) - sec_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.544126, 3] rpc_server/srv_pipe_hnd.c:344(free_pipe_context)
- free_pipe_context: destroying talloc pool of size 1177
- [2011/07/26 12:04:02.544150, 3] smbd/pipes.c:352(pipe_write_andx_done)
- writeX-IPC nwritten=132
- [2011/07/26 12:04:02.545223, 3] smbd/process.c:1489(process_smb)
- Transaction 15 of length 63 (0 toread)
- [2011/07/26 12:04:02.545254, 3] smbd/process.c:1298(switch_message)
- switch message SMBreadX (pid 24641) conn 0xb7d0deb0
- [2011/07/26 12:04:02.545285, 3] smbd/pipes.c:462(pipe_read_andx_done)
- readX-IPC min=1024 max=1024 nread=44
- [2011/07/26 12:04:02.546454, 3] smbd/process.c:1489(process_smb)
- Transaction 16 of length 108 (0 toread)
- [2011/07/26 12:04:02.546485, 3] smbd/process.c:1298(switch_message)
- switch message SMBntcreateX (pid 24641) conn 0xb7d0deb0
- [2011/07/26 12:04:02.546529, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(65534, 65534) : sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.546550, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(100) : conn_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.546565, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.546606, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (65534, 65534) - sec_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.546640, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(65534, 65534) : sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.546660, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(100) : conn_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.546680, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.546714, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (65534, 65534) - sec_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.547893, 3] smbd/process.c:1489(process_smb)
- Transaction 17 of length 183 (0 toread)
- [2011/07/26 12:04:02.547922, 3] smbd/process.c:1298(switch_message)
- switch message SMBwriteX (pid 24641) conn 0xb7d0deb0
- [2011/07/26 12:04:02.547960, 3] rpc_server/srv_pipe.c:1668(api_pipe_bind_req)
- api_pipe_bind_req: \PIPE\netlogon -> \PIPE\netlogon
- [2011/07/26 12:04:02.548002, 3] smbd/sec_ctx.c:210(push_sec_ctx)
- push_sec_ctx(65534, 65534) : sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.548023, 3] smbd/uid.c:429(push_conn_ctx)
- push_conn_ctx(100) : conn_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.548039, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
- [2011/07/26 12:04:02.548128, 3] ../libcli/auth/schannel_state_tdb.c:132(schannel_fetch_session_key_tdb)
- schannel_fetch_session_key_tdb: restored schannel info key SECRETS/SCHANNEL/COSSSLT07
- [2011/07/26 12:04:02.548163, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
- pop_sec_ctx (65534, 65534) - sec_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.548189, 3] rpc_server/srv_pipe.c:998(check_bind_req)
- check_bind_req for \netlogon
- [2011/07/26 12:04:02.548221, 3] smbd/pipes.c:352(pipe_write_andx_done)
- writeX-IPC nwritten=115
- [2011/07/26 12:04:02.549264, 3] smbd/process.c:1489(process_smb)
- Transaction 18 of length 63 (0 toread)
- [2011/07/26 12:04:02.549290, 3] smbd/process.c:1298(switch_message)
- switch message SMBreadX (pid 24641) conn 0xb7d0deb0
- [2011/07/26 12:04:02.549316, 3] smbd/pipes.c:462(pipe_read_andx_done)
- readX-IPC min=1024 max=1024 nread=92
- [2011/07/26 12:04:02.550520, 3] smbd/process.c:1489(process_smb)
- Transaction 19 of length 268 (0 toread)
- [2011/07/26 12:04:02.550546, 3] smbd/process.c:1298(switch_message)
- switch message SMBwriteX (pid 24641) conn 0xb7d0deb0
- [2011/07/26 12:04:02.550613, 3] rpc_server/srv_pipe_hnd.c:344(free_pipe_context)
- free_pipe_context: destroying talloc pool of size 74
- [2011/07/26 12:04:02.550634, 3] rpc_server/srv_pipe.c:2415(api_rpcTNP)
- api_rpcTNP: rpc command: NETR_LOGONGETCAPABILITIES
- [2011/07/26 12:04:02.550675, 3] rpc_server/srv_pipe_hnd.c:344(free_pipe_context)
- free_pipe_context: destroying talloc pool of size 0
- [2011/07/26 12:04:02.550700, 3] smbd/pipes.c:352(pipe_write_andx_done)
- writeX-IPC nwritten=200
- [2011/07/26 12:04:02.551755, 3] smbd/process.c:1489(process_smb)
- Transaction 20 of length 63 (0 toread)
- [2011/07/26 12:04:02.551779, 3] smbd/process.c:1298(switch_message)
- switch message SMBreadX (pid 24641) conn 0xb7d0deb0
- [2011/07/26 12:04:02.551835, 3] smbd/pipes.c:462(pipe_read_andx_done)
- readX-IPC min=1024 max=1024 nread=88
- [2011/07/26 12:04:02.556723, 3] smbd/process.c:1489(process_smb)
- Transaction 21 of length 142 (0 toread)
- [2011/07/26 12:04:02.556749, 3] smbd/process.c:1298(switch_message)
- switch message SMBsesssetupX (pid 24641) conn 0x0
- [2011/07/26 12:04:02.556766, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.556789, 3] smbd/sesssetup.c:1436(reply_sesssetup_and_X)
- wct=12 flg2=0xc807
- [2011/07/26 12:04:02.556806, 3] smbd/sesssetup.c:1190(reply_sesssetup_and_X_spnego)
- Doing spnego session setup
- [2011/07/26 12:04:02.556823, 3] smbd/sesssetup.c:1232(reply_sesssetup_and_X_spnego)
- NativeOS=[] NativeLanMan=[] PrimaryDomain=[]
- [2011/07/26 12:04:02.556865, 3] smbd/sesssetup.c:806(reply_spnego_negotiate)
- reply_spnego_negotiate: Got secblob of size 40
- [2011/07/26 12:04:02.556887, 5] auth/auth.c:481(make_auth_context_subsystem)
- Making default auth method list for DC, security=user, encrypt passwords = yes
- [2011/07/26 12:04:02.556909, 5] auth/auth.c:383(load_auth_module)
- load_auth_module: Attempting to find an auth method to match guest
- [2011/07/26 12:04:02.556926, 5] auth/auth.c:408(load_auth_module)
- load_auth_module: auth method guest has a valid init
- [2011/07/26 12:04:02.556942, 5] auth/auth.c:383(load_auth_module)
- load_auth_module: Attempting to find an auth method to match sam
- [2011/07/26 12:04:02.556959, 5] auth/auth.c:408(load_auth_module)
- load_auth_module: auth method sam has a valid init
- [2011/07/26 12:04:02.556975, 5] auth/auth.c:383(load_auth_module)
- load_auth_module: Attempting to find an auth method to match winbind:trustdomain
- [2011/07/26 12:04:02.556991, 5] auth/auth.c:383(load_auth_module)
- load_auth_module: Attempting to find an auth method to match trustdomain
- [2011/07/26 12:04:02.557007, 5] auth/auth.c:408(load_auth_module)
- load_auth_module: auth method trustdomain has a valid init
- [2011/07/26 12:04:02.557022, 5] auth/auth.c:408(load_auth_module)
- load_auth_module: auth method winbind has a valid init
- [2011/07/26 12:04:02.557042, 3] libsmb/ntlmssp.c:65(debug_ntlmssp_flags)
- Got NTLMSSP neg_flags=0xe2088297
- [2011/07/26 12:04:02.557058, 5] auth/auth.c:97(get_ntlm_challenge)
- auth_get_challenge: module guest did not want to specify a challenge
- [2011/07/26 12:04:02.557073, 5] auth/auth.c:97(get_ntlm_challenge)
- auth_get_challenge: module sam did not want to specify a challenge
- [2011/07/26 12:04:02.557088, 5] auth/auth.c:97(get_ntlm_challenge)
- auth_get_challenge: module winbind did not want to specify a challenge
- [2011/07/26 12:04:02.557120, 5] auth/auth.c:132(get_ntlm_challenge)
- auth_context challenge created by random
- [2011/07/26 12:04:02.557135, 5] auth/auth.c:133(get_ntlm_challenge)
- challenge is:
- [2011/07/26 12:04:02.558640, 3] smbd/process.c:1489(process_smb)
- Transaction 22 of length 280 (0 toread)
- [2011/07/26 12:04:02.558665, 3] smbd/process.c:1298(switch_message)
- switch message SMBsesssetupX (pid 24641) conn 0x0
- [2011/07/26 12:04:02.558682, 3] smbd/sec_ctx.c:310(set_sec_ctx)
- setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
- [2011/07/26 12:04:02.558703, 3] smbd/sesssetup.c:1436(reply_sesssetup_and_X)
- wct=12 flg2=0xc807
- [2011/07/26 12:04:02.558720, 3] smbd/sesssetup.c:1190(reply_sesssetup_and_X_spnego)
- Doing spnego session setup
- [2011/07/26 12:04:02.558748, 3] smbd/sesssetup.c:1232(reply_sesssetup_and_X_spnego)
- NativeOS=[] NativeLanMan=[] PrimaryDomain=[]
- [2011/07/26 12:04:02.558782, 3] libsmb/ntlmssp.c:747(ntlmssp_server_auth)
- Got user=[COSSSLT07$] domain=[SOLAR] workstation=[COSSSLT07] len1=24 len2=24
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement