Bug#319207: marked as done (smbfs: mount.cifs fails when password contains comma)

Debian Bug Tracking System Tue, 25 Oct 2005 06:18:28 -0700

Your message dated Tue, 25 Oct 2005 15:07:09 +0200
with message-id <[EMAIL PROTECTED]>
and subject line #319207 smbfs: mount.cifs fails when password contains comma
has caused the attached Bug report to be marked as done.


This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere.  Please contact me immediately.)

Debian bug tracking system administrator
(administrator, Debian Bugs database)

--------------------------------------
Received: (at submit) by bugs.debian.org; 20 Jul 2005 13:42:40 +0000
>From [EMAIL PROTECTED] Wed Jul 20 06:42:40 2005
Return-path: <[EMAIL PROTECTED]>
Received: from cluster1.uol.ua [195.123.61.209] (root)
        by spohr.debian.org with esmtp (Exim 3.36 1 (Debian))
        id 1DvEqN-0002jZ-00; Wed, 20 Jul 2005 06:42:40 -0700
Received: from [199.33.79.4] (account [EMAIL PROTECTED])
  by cluster1.uol.ua ( Ukraine Online WebUser 4.2.8)
  with HTTP id 24301115 for [EMAIL PROTECTED]; Wed, 20 Jul 2005 17:02:25 +0300
From: "Alexander Gattin" <[EMAIL PROTECTED]>
Subject: smbfs: mount.cifs fails when password contains comma
To: Debian Bug Tracking System <[EMAIL PROTECTED]>
X-Mailer: Ukraine Online WebUser Interface v.4.2.8
Date: Wed, 20 Jul 2005 17:02:25 +0300
Message-ID: <[EMAIL PROTECTED]>
MIME-Version: 1.0
Content-Type: text/plain; charset="KOI8-U"; format="flowed"
Content-Transfer-Encoding: 8bit
Delivered-To: [EMAIL PROTECTED]
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 
        (1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Level: 
X-Spam-Status: No, hits=-8.0 required=4.0 tests=BAYES_00,HAS_PACKAGE 
        autolearn=no version=2.60-bugs.debian.org_2005_01_02

Package: smbfs
Version: 3.0.14a-3
Severity: important

Hi!

I tried to do homedir automounting through CIFS
protocol. It's pretty obvious SMB isn't approproiate
for this task, although first I tried libpam-mount/SMB
and it worked. CIFS didn't. For the same account, of
course.

As it turned out the source of problem is difference in
password processing between mount.smbfs and mount.cifs.
It seems that the latter mistreats passwords containing
comma (as was in my case), and probably some other
non-alnum characters too.

Here's an example:

1. adding test user:
> penguin:~# adduser --gecos '' --disabled-password luser
> Adding user `luser'...
> Adding new group `luser' (1021).
> Adding new user `luser' (1021) with group `luser'.
> Creating home directory `/home/luser'.
> Copying files from `/etc/skel'

2. setting SAMBA password containing comma:
> penguin:~# smbpasswd -a luser
> New SMB password: luser,r
> Retype new SMB password: luser,r
> Added user luser.

3. mount through SMB at remote side:
> vespasian:~# mount.smbfs //penguin/luser /mnt -o username=luser
> Password: luser,r
> vespasian:~# ls -A /mnt/
> .alias  .bash_profile  .bashrc  .cshrc  .kde  .vim  .vimrc  .Xresources  
> .zshrc

4. mount through CIFS at remote side:
> vespasian:~# mount.cifs //penguin/luser /mnt -o user=luser
> Password: luser,r
> mount error 13 = Permission denied
> Refer to the mount.cifs(8) manual page (e.g.man mount.cifs)

:-/

5. of course, I checked SAMBA logs:
> [2005/07/20 15:59:53, 3] libsmb/ntlm_check.c:ntlm_password_check(344)
>   ntlm_password_check: NT MD4 password check failed for user luser
...
> [2005/07/20 15:59:53, 5] auth/auth.c:check_ntlm_password(271)
>   check_ntlm_password: sam authentication for user [luser] FAILED with error 
> NT_STATUS_WRONG_PASSWORD
> [2005/07/20 15:59:53, 2] auth/auth.c:check_ntlm_password(312)
>   check_ntlm_password:  Authentication for user [luser] -> [luser] FAILED 
> with error NT_STATUS_WRONG_PASSWORD

Here you can plain see that password used by mount.cifs
simply _doesn't_ _match_.
6. What should be there instead is:
> check_ntlm_password: sam authentication for user [luser] succeeded

Period.

-- 
WBR,
xrgtn

-- System Information:
Debian Release: testing/unstable
   APT prefers testing
   APT policy: (990, 'testing'), (501, 'warty'), (501, 
'unstable'), (500, 'oldstable'), (500, 'stable'), (1, 
'experimental')
Architecture: i386 (i686)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.11-grsec
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 
(charmap=UTF-8)

Versions of packages smbfs depends on:
ii  libc6                       2.3.2.ds1-22 GNU C 
Library: Shared libraries an
ii  libcomerr2                  1.37-2sarge1 common error 
description library
ii  libkrb53                    1.3.6-3      MIT Kerberos 
runtime libraries
ii  libldap2                    2.1.30-11    OpenLDAP 
libraries
ii  netbase                     4.21         Basic TCP/IP 
networking system
ii  samba-common                3.0.14a-3    Samba common 
files used by both th

smbfs recommends no packages.

-- no debconf information

---------------------------------------
Received: (at 319207-done) by bugs.debian.org; 25 Oct 2005 13:07:15 +0000
>From [EMAIL PROTECTED] Tue Oct 25 06:07:15 2005
Return-path: <[EMAIL PROTECTED]>
Received: from h02.hostsharing.net (pomo.hostsharing.net) [212.21.77.2] 
        by spohr.debian.org with esmtp (Exim 3.36 1 (Debian))
        id 1EUOWJ-00058i-00; Tue, 25 Oct 2005 06:07:15 -0700
Received: from apu.credativ.de (p50896484.dip.t-dialin.net [80.137.100.132])
        (using SSLv3 with cipher RC4-MD5 (128/128 bits))
        (No client certificate requested)
        by pomo.hostsharing.net (Postfix) with ESMTP id 31738A0340E
        for <[EMAIL PROTECTED]>; Tue, 25 Oct 2005 15:07:18 +0200 (CEST)
Subject: #319207 smbfs: mount.cifs fails when password contains comma
From: =?ISO-8859-1?Q?No=E8l_K=F6the?= <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
Content-Type: multipart/signed; micalg=pgp-sha1; 
protocol="application/pgp-signature"; boundary="=-7jqFE67bis9jYdxc19we"
Organization: Debian GNU/Linux, www.debian.org
Date: Tue, 25 Oct 2005 15:07:09 +0200
Message-Id: <[EMAIL PROTECTED]>
Mime-Version: 1.0
X-Mailer: Evolution 2.2.3 
Delivered-To: [EMAIL PROTECTED]
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 
        (1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Level: 
X-Spam-Status: No, hits=-1.0 required=4.0 tests=BAYES_00,RCVD_IN_DSBL 
        autolearn=no version=2.60-bugs.debian.org_2005_01_02


--=-7jqFE67bis9jYdxc19we
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

Version: 3.0.20b-1

Hello,

I can reproduce the problem on sarge (3.0.14a) but its fixed in sid
(3.0.20b):

fixed by upstream in 3.0.20:

    * Fix cifs mounts to handle commas embedded in prompted=20
      password, and password and credential files.

--=20
No=C3=A8l K=C3=B6the <noel debian.org>
Debian GNU/Linux, www.debian.org

--=-7jqFE67bis9jYdxc19we
Content-Type: application/pgp-signature; name=signature.asc
Content-Description: This is a digitally signed message part

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)

iD8DBQBDXi399/DnDzB9Vu0RAovvAJ9OgU5h84mbPnZdepE+PHNmIF1qhgCdHIRz
BSUVCtrshqfIY80+tghUjPw=
=A2n4
-----END PGP SIGNATURE-----

--=-7jqFE67bis9jYdxc19we--


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#319207: marked as done (smbfs: mount.cifs fails when password contains comma)

Reply via email to