on 9/25/2007 4:23 AM Bob Chiodini spake the following: > Good Morning, > > I have a Centos 4.5 (x86_64) server running samba to share data with > windows users. We've been going through a security audit and the > following log entries were noted: > > [2007/09/24 09:37:29, 0] rpc_server/srv_util.c:get_alias_user_groups(206) > > get_alias_user_groups: gid of user bendew doesn't exist. Check your > /etc/passwd and /etc/group files > > [2007/09/24 09:37:29, 1] rpc_server/srv_util.c:get_domain_user_groups(298) > > get_domain_user_groups: primary gid of user [nobody] is not a Domain > group ! > > get_domain_user_groups: You should fix it, NT doesn't like that > > [2007/09/24 09:37:29, 0] rpc_server/srv_util.c:get_alias_user_groups(206) > > get_alias_user_groups: gid of user nobody doesn't exist. Check your > /etc/passwd and /etc/group files > > [2007/09/24 09:37:29, 1] rpc_server/srv_util.c:get_domain_user_groups(298) > > get_domain_user_groups: primary gid of user [mark] is not a Domain group ! > > get_domain_user_groups: You should fix it, NT doesn't like that > > [2007/09/24 09:37:29, 0] rpc_server/srv_util.c:get_alias_user_groups(206) > > get_alias_user_groups: gid of user mark doesn't exist. Check your > /etc/passwd and /etc/group files > > I am using tcpwrappers and have blocked the subnets that should not > access my server. The IP of the auditor is within one of the blocked > subnets, but still seems to be getting through. Is samba integrated > with tcpwrappers. ldd smbd does not show a reference to libwrap, should > it? > > Bob... I don't think it is. You set up which subnets samba listens to in its own config file, but you will still get some log chatter about the ignored addresses. -- MailScanner is like deodorant... You hope everybody uses it, and you notice quickly if they don't!!!!