[Bug 1736940] Re: Ubuntu 16.04 LTS: SMBStatus shows wrong information
But you can only reproduce it with windows 10 as the client, right? Not with smbclient and protocol SMB3? -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to the bug report. https://bugs.launchpad.net/bugs/1736940 Title: Ubuntu 16.04 LTS: SMBStatus shows wrong information To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/samba4/+bug/1736940/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1737534] Re: smbd/nmbd don't restart after upgrade if started but disabled
> Uhm, so I should ENABLE the service, and then prevent it from starting? You would be adding a condition for it to start. Native systemd services can have such conditions in the service definition file, but in xenial samba is not one of those I'm afraid. In fact, the samba package has a mess of 3 init systems config files in it in xenial: sysv, upstart and systemd. > Isn't that a bit convolute? It's not the most common scenario: only start the service if a certain mount point is in use? All that being said, it was my personal honest statement when I said i wasn't sure what the right outcome would be in such a case: service disabled, but running (started manually), and an upgrade comes along. It's excellent that you found these other packages which behave differently. Do they have native systemd service files, or are they using the sysv compatibility feature like samba is? -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to samba in Ubuntu. https://bugs.launchpad.net/bugs/1737534 Title: smbd/nmbd don't restart after upgrade if started but disabled To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/samba/+bug/1737534/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1736940] Re: Ubuntu 16.04 LTS: SMBStatus shows wrong information
Sorry, I can't debug those scripts. I don't know why all your users show up as nobody/nogroup in smbstatus, maybe you have a force user setting in smb.conf or something like that? Regarding the unknown protocol issue, that's a valid bug, but probably at a level of "low". -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to the bug report. https://bugs.launchpad.net/bugs/1736940 Title: Ubuntu 16.04 LTS: SMBStatus shows wrong information To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/samba4/+bug/1736940/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1572745] Re: Samba server amd64 testcast fails step 28. net usersidlist could not get the user/id list
I think we should be ok with the new test case. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to the bug report. https://bugs.launchpad.net/bugs/1572745 Title: Samba server amd64 testcast fails step 28. net usersidlist could not get the user/id list To manage notifications about this bug go to: https://bugs.launchpad.net/samba/+bug/1572745/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1576799] Re: Regression: 2:4.3.8+dfsg-0ubuntu0.14.04.2 Failed to Issue the StartTLS instruction
That being said, the linked samba bug is interesting: https://bugzilla.samba.org/show_bug.cgi?id=13124 samba git master still has that change, i.e., use addr (ip) instead of ldap_server_name. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to samba in Ubuntu. https://bugs.launchpad.net/bugs/1576799 Title: Regression: 2:4.3.8+dfsg-0ubuntu0.14.04.2 Failed to Issue the StartTLS instruction To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/samba/+bug/1576799/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1576799] Re: Regression: 2:4.3.8+dfsg-0ubuntu0.14.04.2 Failed to Issue the StartTLS instruction
> ldapsearch -x -Z -h I.P -p 389 -D cn=administrator,cn=users,dc=techmint,dc=lan -w -b 'dc=techmint,dc=lan' Please use -ZZ. And did you use the IP for -h? Why not the hostname, which I think (from a previous comment you made) is win.cifs.com? > I am able to confirm with tcpdump that communication is in encrypted mode. That doesn't mean it's secure. If your client is told to accept any certificate from the server, it would still be vulnerable to MITM attacks. You need to change this setting back to "hard" in your /etc/ldap/ldap.conf: TLS_REQCERT hard and then repeat the ldapsearch command with -ZZ. And use the certificate's commonName value for your ldapsearch "-h" parameter, or one of the certificate's subjectAltName fields that are prefixed with DNS. ** Changed in: samba (Ubuntu) Status: Confirmed => Incomplete -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to samba in Ubuntu. https://bugs.launchpad.net/bugs/1576799 Title: Regression: 2:4.3.8+dfsg-0ubuntu0.14.04.2 Failed to Issue the StartTLS instruction To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/samba/+bug/1576799/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1735158] Re: FTBFS with gcc7
The packages built, so obviously the FTBFS fix is applied. Marking as verified. ** Tags removed: verification-needed-artful ** Tags added: verification-done-artful -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to iproute2 in Ubuntu. https://bugs.launchpad.net/bugs/1735158 Title: FTBFS with gcc7 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/iproute2/+bug/1735158/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1736940] Re: Ubuntu 16.04 LTS: SMBStatus shows wrong information
I can see something similar from an ubuntu artful client if I force protocol SMB3: andreas@nsnx:~$ smbclient //10.0.100.215/ubuntu -U ubuntu%ubuntu -m SMB3 WARNING: The "syslog" option is deprecated Domain=[XENIAL-SAMBA-SMBSTATUS-1737534] OS=[] Server=[] smb: \> server (xenial): PID Username Group MachineProtocol Version -- 3553 ubuntuubuntu10.0.100.1 (ipv4:10.0.100.1:41196) Unknown (0x0311) But just the protocol version is unknown: the username and group are correct. How are your samba users managed? For this test I used the local tdb database, i.e., I just ran "sudo smbpasswd -a ubuntu" after a default install. ** Changed in: samba4 (Ubuntu) Status: New => Incomplete -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to the bug report. https://bugs.launchpad.net/bugs/1736940 Title: Ubuntu 16.04 LTS: SMBStatus shows wrong information To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/samba4/+bug/1736940/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1576799] Re: Regression: 2:4.3.8+dfsg-0ubuntu0.14.04.2 Failed to Issue the StartTLS instruction
** CVE removed: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2016-2113 -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to samba in Ubuntu. https://bugs.launchpad.net/bugs/1576799 Title: Regression: 2:4.3.8+dfsg-0ubuntu0.14.04.2 Failed to Issue the StartTLS instruction To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/samba/+bug/1576799/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1737534] Re: smbd/nmbd don't restart after upgrade if started but disabled
I can confirm this behavior in xenial, but to be honest I'm not sure what's the correct expected outcome. Can you perhaps accomplish something similar using /usr/sbin/policy- rc.d? You can create that script and it would check if samba is the service being started, and then check if the disk you need is verified and decrypted, and do nothing otherwise. See this bug and its comments 7 and 8 for an example: https://bugs.launchpad.net/ubuntu/+source/freeradius/+bug/1712817 Would that work for you? ** Changed in: samba (Ubuntu) Status: New => Incomplete -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to samba in Ubuntu. https://bugs.launchpad.net/bugs/1737534 Title: smbd/nmbd don't restart after upgrade if started but disabled To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/samba/+bug/1737534/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1736940] Re: Ubuntu 16.04 LTS: SMBStatus shows wrong information
Taking a look. ** Changed in: samba4 (Ubuntu) Status: Incomplete => New ** Changed in: samba4 (Ubuntu) Assignee: (unassigned) => Andreas Hasenack (ahasenack) -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to the bug report. https://bugs.launchpad.net/bugs/1736940 Title: Ubuntu 16.04 LTS: SMBStatus shows wrong information To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/samba4/+bug/1736940/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1576799] Re: Regression: 2:4.3.8+dfsg-0ubuntu0.14.04.2 Failed to Issue the StartTLS instruction
In particular, one of the fixes introduced in samba 4.3.7 was to properly check certificates, as @mdeslaur said in comment #2: "o CVE-2016-2113 (Missing TLS certificate validation)" So I would ask you to double check your certificates and chain to make sure all is correct in that front, as samba would have skipped some validation checks before. ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2016-2113 -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to samba in Ubuntu. https://bugs.launchpad.net/bugs/1576799 Title: Regression: 2:4.3.8+dfsg-0ubuntu0.14.04.2 Failed to Issue the StartTLS instruction To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/samba/+bug/1576799/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 1737296] Re: package python-samba 2:4.3.11+dfsg-0ubuntu0.16.04.11 failed to install/upgrade: subprocess new pre-removal script returned error exit status 127
You probably removed python2 from your system, or something like that. Check the first line of /usr/bin/pyclean to be sure. This is beyond a bug report now. Something you did broke your system with regards to python. My last suggestion is to try to reinstall the python2.7-minimal package, either via "sudo apt install --reinstall python2.7-minimal" or via dpkg directly by passing it the package path to /var/cache/apt/archives where it probably is. I will mark this bug as invalid, sorry. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to samba in Ubuntu. https://bugs.launchpad.net/bugs/1737296 Title: package python-samba 2:4.3.11+dfsg-0ubuntu0.16.04.11 failed to install/upgrade: subprocess new pre-removal script returned error exit status 127 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/samba/+bug/1737296/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs