Strange spam on SMB Access the logs
Hello !
Lately I have been experiencing some strange spam on my SMB logs. Here is an example
/SourceCache/samba/samba-235.7/samba/source/auth/auth.c:check_ntlm_password(319)
check_ntlm_password: Authentication for user [] -> [] FAILED with error NT_STATUS_NO_SUCH_USER
I'ts repeative and it seems to be coming from Windows clients I dont even have on my system, here is a longer part.
[2011/11/07 16:19:19, 2, pid=10825] /SourceCache/samba/samba-235.7/samba/source/smbd/reply.c:reply_special(332)
netbios connect: name1=SIBELIUSOPISTO name2=MCRVERKA
[2011/11/07 16:19:19, 2, pid=10825] /SourceCache/samba/samba-235.7/samba/source/smbd/reply.c:reply_special(339)
netbios connect: local=sibeliusopisto remote=mcrverka, name type = 0
[2011/11/07 16:19:19, 2, pid=10825] /SourceCache/samba/samba-235.7/samba/source/smbd/sesssetup.c:setup_new_vc_sessi on(1273)
setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources.
[2011/11/07 16:19:19, 2, pid=10825] /SourceCache/samba/samba-235.7/samba/source/lib/module.c:do_smb_load_module(64)
Module '/usr/lib/samba/auth/odsam.dylib' loaded
[2011/11/07 16:19:19, 2, pid=10825] /SourceCache/samba/samba-235.7/samba/source/smbd/sesssetup.c:setup_new_vc_sessi on(1273)
setup_new_vc_session: New VC == 0, if NT4.x compatible we would close all old resources.
[2011/11/07 16:19:19, 2, pid=10825] /SourceCache/samba/samba-235.7/samba/source/auth/auth.c:check_ntlm_password(319 )
check_ntlm_password: Authentication for user [] -> [] FAILED with error NT_STATUS_NO_SUCH_USER
I happen to know that MCRVERKA is a windows server (I think) run by another company in the same building, and in samme network. My server is running in two network subnets, 172.17.6 and 172.17.144 and these are coming from the 144 network, witch is common network for all companies in the building. There are many other computers too doing the same spam to my computer, some are even Macs from my own network and other macs from other companies.
Any idea what is causing this, and how could I resolve this and end the endless spam?
Mac Pro, Mac OS X (10.6.7), Server