Re: [Samba] samba 2.0.6 on HP-UX 11.0

[Eric Roseme]

The prs_mem_get buffer overrun is likely caused by authenticating a user that is a member of some number of groups in the domain. You can easily test this by reproducing the error on the failing user, then try another user that is a member of fewer groups. In my own testing in December of 2001, I could make it fail by going to 6 group memberships. So the reason it failed with no server changes may be due to a change in the user profile.

The fix is called a SIDHistory fix, and it went into 2.0.8, which never got released. It was distributed in 2.0.9.

If you are on HP-UX 11, you can download CIFS/9000 Server (Samba) for free from software.hp.com.

Eric Roseme
Hewlett-Packard

Cunningham, Dave wrote:

I've had samba running cleanly on an HP-UX 11.0 system for many months, with
"DOMAIN" security and one-to-one account name mapping. A few days ago I
started getting password prompts on connection, and messages like this in
the log files...


[2003/01/02 15:46:36, 0] rpc_parse/parse_prs.c:(316)

prs_mem_get: reading data of size 60 would overrun buffer.

[2003/01/02 15:46:36, 0] smbd/password.c:(1430)

domain_client_validate: unable to validate password for user cunning in
domain ACCT01 to Domain controller *. Error wa
s code 0.

[2003/01/02 15:46:36, 1] smbd/password.c:(505)

Couldn't find user 'cunning' in smb_passwd file.

[2003/01/02 15:46:36, 1] smbd/password.c:(505)

Couldn't find user 'cunning' in smb_passwd file.

[2003/01/02 15:46:36, 1] smbd/reply.c:(909)

Rejecting user 'cunning': authentication failed


Nothing has changed on the server where samba runs. Could something like
growth in the number of accounts on the domain controller cause this ? Any
other suggestions ?

Dave


Dave Cunningham
Computing and Network Services
(408) 756-1382 Voice, (408) 539-4912 Pager
[EMAIL PROTECTED]

--
To unsubscribe from this list go to the following URL and read the
instructions:  http://lists.samba.org/mailman/listinfo/samba