COMMAND
smbd
SYSTEMS AFFECTED
Samba 2.0.7, 2.0.8
PROBLEM
Michal Zalewski found following. Insufficient parameter
validation and unsafe default configuration make numerous systems
running samba SMB file sharing daemon vulnerable to remote
attacks.
Due to insufficient NetBIOS computer name validation in incoming
SMB requests, in conjunction with default configuration found for
example in RedHat Linux and derivates, samba daemon allows remote
attackers to create SMB session log files (*.log) with highly
attacker-dependent contents outside outside logs directory. This
vulnerability itself can be used to perform DoS attacks, or, if
combined with unprivileged local access, can be used to gain
superuser privileges.
On vulnerable platforms, by default, each SMB session is logged
to the file /var/log/samba/<netbios-name>.log. If the attacker is
connecting from 'FOOBAR', logs would be put in
/var/log/foobar.log. Unfortunately, NetBIOS name '../../../evil'
would be accepted, as well, creating /evil.log file.
This vulnerability is exploitable if the following setting is
present in smb.conf file:
log file = /var/log/samba/%m.log
...which is default on major Linux distributions, and probably few
other platforms, as well. On some systems, configuration might be
different:
log file = /usr/local/samba/var/log.%m
In the second case (e.g. FreeBSD), there is usually no way to
exploit this vulnerability.
Additionally, as noticed by Mark Loveless, using specific NetBIOS
names, like 'non/existing/dir', it is possible to avoid logging
of error messages (e.g. authentication failures) at all, which
might be very useful for performing brute-force attacks.
Note that any non-default configuration not using any prefix or
suffix (log- or .log) in log filename would be vulnerable to
instant remote compromise.
This is the scenario of local privilege escalation attack against
RedHat 7.x installation:
$ ln -s /etc/passwd /tmp/x.log
$ smbclient //NIMUE/"`perl -e '{print "\ntoor::0:0::/:/bin/sh\n"}'`" -n ../../../tmp/x -N
...where 'NIMUE' stands for local host name (few error messages
should be returned).
$ su toor
#
Explaination of this attack is pretty trivial. Samba daemon tries
to access logfile for host introducing itself as '../../../tmp/x'.
This translates to open() on /var/log/samba/../../../tmp/x.log.
Thus, /tmp/x.log is opened in O_APPEND mode, following previously
created symlink to /etc/passwd.
Then, anonymous attempt to mount non-existing share named
"\ntoor::0:0::/:/bin/sh\n" is logged in /tmp/x.log, or, if you
prefer, in /etc/passwd. Error message looks this way:
[2001/06/22 14:53:03, 1] smbd/reply.c:reply_sesssetup_and_X(925) Rejecting user 'lcamtuf': authentication failed
[2001/06/22 14:53:03, 0] smbd/service.c:make_connection(214) ../../../tmp/x (192.233.133.108) couldn't find service toor::0:0::/:/bin/sh
The last line is, obviously, accepted by /bin/su or /bin/login.
Linux kernels with openwall patch (with restricted links in /tmp)
are imunne to this type of attack (following symlinks does not
work, link owner does not match with file's owner). The symlink
restrictions work only in /tmp (mode 1777) directories, so making
the symlink in your own homedir still works (should work).
Another thing you can do is creating a symlink pointing to
non-existing file. You can create new boot script, configuration
files like ld.so.preload or whatever you want.
If symlink don't work you can still use a hardlink though which
is yet another reason for making /tmp a separate filesystem.
SOLUTION
As a temporary workaround, we suggest changing 'log file' setting,
as described above. This vulnerability has been confirmed by the
vendor, and is addressed there:
http://us1.samba.org/samba/whatsnew/macroexploit.html
Removing '%m' at all would protect against attackers trying to
avoid logging at all. Vendor was informed, fix will be publicly
available soon.
For Trustix Linux:
http://www.trustix.net/pub/Trustix/updates/
ftp://ftp.trustix.net/pub/Trustix/updates/
./1.2/SRPMS/samba-2.0.10-1tr.src.rpm
./1.2/RPMS/samba-common-2.0.10-1tr.i586.rpm
./1.2/RPMS/samba-client-2.0.10-1tr.i586.rpm
./1.2/RPMS/samba-2.0.10-1tr.i586.rpm
./1.1/SRPMS/samba-2.0.10-1tr.src.rpm
./1.1/RPMS/samba-common-2.0.10-1tr.i586.rpm
./1.1/RPMS/samba-client-2.0.10-1tr.i586.rpm
./1.1/RPMS/samba-2.0.10-1tr.i586.rpm
For Conectiva Linux:
ftp://atualizacoes.conectiva.com.br/4.0/SRPMS/samba-2.0.9-2U40_1cl.src.rpm
ftp://atualizacoes.conectiva.com.br/4.0/i386/samba-2.0.9-2U40_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.0/i386/samba-clients-2.0.9-2U40_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.0/i386/samba-doc-2.0.9-2U40_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.0/i386/samba-swat-2.0.9-2U40_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.0es/SRPMS/samba-2.0.9-2U40_1cl.src.rpm
ftp://atualizacoes.conectiva.com.br/4.0es/i386/samba-2.0.9-2U40_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.0es/i386/samba-clients-2.0.9-2U40_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.0es/i386/samba-doc-2.0.9-2U40_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.0es/i386/samba-swat-2.0.9-2U40_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.1/SRPMS/samba-2.0.9-2U41_1cl.src.rpm
ftp://atualizacoes.conectiva.com.br/4.1/i386/samba-2.0.9-2U41_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.1/i386/samba-clients-2.0.9-2U41_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.1/i386/samba-doc-2.0.9-2U41_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.1/i386/samba-swat-2.0.9-2U41_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.2/SRPMS/samba-2.0.9-2U42_1cl.src.rpm
ftp://atualizacoes.conectiva.com.br/4.2/i386/samba-2.0.9-2U42_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.2/i386/samba-clients-2.0.9-2U42_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.2/i386/samba-doc-2.0.9-2U42_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/4.2/i386/samba-swat-2.0.9-2U42_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/5.0/SRPMS/samba-2.0.9-2U50_1cl.src.rpm
ftp://atualizacoes.conectiva.com.br/5.0/i386/samba-2.0.9-2U50_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/5.0/i386/samba-clients-2.0.9-2U50_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/5.0/i386/samba-doc-2.0.9-2U50_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/5.0/i386/samba-swat-2.0.9-2U50_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/5.1/SRPMS/samba-2.0.9-2U51_1cl.src.rpm
ftp://atualizacoes.conectiva.com.br/5.1/i386/samba-2.0.9-2U51_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/5.1/i386/samba-clients-2.0.9-2U51_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/5.1/i386/samba-doc-2.0.9-2U51_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/5.1/i386/samba-swat-2.0.9-2U51_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/6.0/SRPMS/samba-2.0.9-2U60_1cl.src.rpm
ftp://atualizacoes.conectiva.com.br/6.0/RPMS/samba-2.0.9-2U60_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/6.0/RPMS/samba-clients-2.0.9-2U60_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/6.0/RPMS/samba-doc-2.0.9-2U60_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/6.0/RPMS/samba-swat-2.0.9-2U60_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/SRPMS/samba-2.0.9-2U50_1cl.src.rpm
ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/samba-2.0.9-2U50_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/samba-clients-2.0.9-2U50_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/samba-doc-2.0.9-2U50_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/samba-swat-2.0.9-2U50_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/SRPMS/samba-2.0.9-2U50_1cl.src.rpm
ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/samba-2.0.9-2U50_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/samba-clients-2.0.9-2U50_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/samba-doc-2.0.9-2U50_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/samba-swat-2.0.9-2U50_1cl.i386.rpm
For Red Hat:
ftp://updates.redhat.com/5.2/en/os/SRPMS/samba-2.0.10-0.52.src.rpm
ftp://updates.redhat.com/5.2/en/os/alpha/samba-2.0.10-0.52.alpha.rpm
ftp://updates.redhat.com/5.2/en/os/alpha/samba-client-2.0.10-0.52.alpha.rpm
ftp://updates.redhat.com/5.2/en/os/i386/samba-2.0.10-0.52.i386.rpm
ftp://updates.redhat.com/5.2/en/os/i386/samba-client-2.0.10-0.52.i386.rpm
ftp://updates.redhat.com/5.2/en/os/sparc/samba-2.0.10-0.52.sparc.rpm
ftp://updates.redhat.com/5.2/en/os/sparc/samba-client-2.0.10-0.52.sparc.rpm
ftp://updates.redhat.com/6.2/en/os/SRPMS/samba-2.0.10-0.62.src.rpm
ftp://updates.redhat.com/6.2/en/os/alpha/samba-2.0.10-0.62.alpha.rpm
ftp://updates.redhat.com/6.2/en/os/alpha/samba-common-2.0.10-0.62.alpha.rpm
ftp://updates.redhat.com/6.2/en/os/alpha/samba-client-2.0.10-0.62.alpha.rpm
ftp://updates.redhat.com/6.2/en/os/i386/samba-2.0.10-0.62.i386.rpm
ftp://updates.redhat.com/6.2/en/os/i386/samba-common-2.0.10-0.62.i386.rpm
ftp://updates.redhat.com/6.2/en/os/i386/samba-client-2.0.10-0.62.i386.rpm
ftp://updates.redhat.com/6.2/en/os/sparc/samba-2.0.10-0.62.sparc.rpm
ftp://updates.redhat.com/6.2/en/os/sparc/samba-common-2.0.10-0.62.sparc.rpm
ftp://updates.redhat.com/6.2/en/os/sparc/samba-client-2.0.10-0.62.sparc.rpm
ftp://updates.redhat.com/7.0/en/os/SRPMS/samba-2.0.10-0.7.src.rpm
ftp://updates.redhat.com/7.0/en/os/alpha/samba-2.0.10-0.7.alpha.rpm
ftp://updates.redhat.com/7.0/en/os/alpha/samba-common-2.0.10-0.7.alpha.rpm
ftp://updates.redhat.com/7.0/en/os/alpha/samba-client-2.0.10-0.7.alpha.rpm
ftp://updates.redhat.com/7.0/en/os/i386/samba-2.0.10-0.7.i386.rpm
ftp://updates.redhat.com/7.0/en/os/i386/samba-common-2.0.10-0.7.i386.rpm
ftp://updates.redhat.com/7.0/en/os/i386/samba-client-2.0.10-0.7.i386.rpm
ftp://updates.redhat.com/7.1/en/os/SRPMS/samba-2.0.10-2.src.rpm
ftp://updates.redhat.com/7.1/en/os/alpha/samba-2.0.10-2.alpha.rpm
ftp://updates.redhat.com/7.1/en/os/alpha/samba-common-2.0.10-2.alpha.rpm
ftp://updates.redhat.com/7.1/en/os/alpha/samba-client-2.0.10-2.alpha.rpm
ftp://updates.redhat.com/7.1/en/os/alpha/samba-swat-2.0.10-2.alpha.rpm
ftp://updates.redhat.com/7.1/en/os/i386/samba-2.0.10-2.i386.rpm
ftp://updates.redhat.com/7.1/en/os/i386/samba-common-2.0.10-2.i386.rpm
ftp://updates.redhat.com/7.1/en/os/i386/samba-client-2.0.10-2.i386.rpm
ftp://updates.redhat.com/7.1/en/os/i386/samba-swat-2.0.10-2.i386.rpm
For Debian:
http://security.debian.org/dists/stable/updates/main/source/samba_2.0.7-3.4.diff.gz
http://security.debian.org/dists/stable/updates/main/source/samba_2.0.7-3.4.dsc
http://security.debian.org/dists/stable/updates/main/source/samba_2.0.7.orig.tar.gz
http://security.debian.org/dists/stable/updates/main/binary-all/samba-doc_2.0.7-3.4_all.deb
http://security.debian.org/dists/stable/updates/main/binary-alpha/samba-common_2.0.7-3.4_alpha.deb
http://security.debian.org/dists/stable/updates/main/binary-alpha/samba_2.0.7-3.4_alpha.deb
http://security.debian.org/dists/stable/updates/main/binary-alpha/smbclient_2.0.7-3.4_alpha.deb
http://security.debian.org/dists/stable/updates/main/binary-alpha/smbfs_2.0.7-3.4_alpha.deb
http://security.debian.org/dists/stable/updates/main/binary-alpha/swat_2.0.7-3.4_alpha.deb
http://security.debian.org/dists/stable/updates/main/binary-arm/samba-common_2.0.7-3.4_arm.deb
http://security.debian.org/dists/stable/updates/main/binary-arm/samba_2.0.7-3.4_arm.deb
http://security.debian.org/dists/stable/updates/main/binary-arm/smbclient_2.0.7-3.4_arm.deb
http://security.debian.org/dists/stable/updates/main/binary-arm/smbfs_2.0.7-3.4_arm.deb
http://security.debian.org/dists/stable/updates/main/binary-arm/swat_2.0.7-3.4_arm.deb
http://security.debian.org/dists/stable/updates/main/binary-i386/samba-common_2.0.7-3.4_i386.deb
http://security.debian.org/dists/stable/updates/main/binary-i386/samba_2.0.7-3.4_i386.deb
http://security.debian.org/dists/stable/updates/main/binary-i386/smbclient_2.0.7-3.4_i386.deb
http://security.debian.org/dists/stable/updates/main/binary-i386/smbfs_2.0.7-3.4_i386.deb
http://security.debian.org/dists/stable/updates/main/binary-i386/swat_2.0.7-3.4_i386.deb
http://security.debian.org/dists/stable/updates/main/binary-m68k/samba-common_2.0.7-3.4_m68k.deb
http://security.debian.org/dists/stable/updates/main/binary-m68k/samba_2.0.7-3.4_m68k.deb
http://security.debian.org/dists/stable/updates/main/binary-m68k/smbclient_2.0.7-3.4_m68k.deb
http://security.debian.org/dists/stable/updates/main/binary-m68k/smbfs_2.0.7-3.4_m68k.deb
http://security.debian.org/dists/stable/updates/main/binary-m68k/swat_2.0.7-3.4_m68k.deb
http://security.debian.org/dists/stable/updates/main/binary-powerpc/samba-common_2.0.7-3.4_powerpc.deb
http://security.debian.org/dists/stable/updates/main/binary-powerpc/samba_2.0.7-3.4_powerpc.deb
http://security.debian.org/dists/stable/updates/main/binary-powerpc/smbclient_2.0.7-3.4_powerpc.deb
http://security.debian.org/dists/stable/updates/main/binary-powerpc/smbfs_2.0.7-3.4_powerpc.deb
http://security.debian.org/dists/stable/updates/main/binary-powerpc/swat_2.0.7-3.4_powerpc.deb
http://security.debian.org/dists/stable/updates/main/binary-sparc/samba-common_2.0.7-3.4_sparc.deb
http://security.debian.org/dists/stable/updates/main/binary-sparc/samba_2.0.7-3.4_sparc.deb
http://security.debian.org/dists/stable/updates/main/binary-sparc/smbclient_2.0.7-3.4_sparc.deb
http://security.debian.org/dists/stable/updates/main/binary-sparc/smbfs_2.0.7-3.4_sparc.deb
http://security.debian.org/dists/stable/updates/main/binary-sparc/swat_2.0.7-3.4_sparc.deb
For Immunix OS:
http://download.immunix.org/ImmunixOS/6.2/updates/RPMS/samba-2.0.10-1_StackGuard_1.i386.rpm
http://download.immunix.org/ImmunixOS/6.2/updates/RPMS/samba-client-2.0.10-1_StackGuard_1.i386.rpm
http://download.immunix.org/ImmunixOS/6.2/updates/RPMS/samba-common-2.0.10-1_StackGuard_1.i386.rpm
http://download.immunix.org/ImmunixOS/6.2/updates/SRPMS/samba-2.0.10-1_StackGuard_1.src.rpm
http://download.immunix.org/ImmunixOS/7.0/updates/RPMS/samba-2.0.10-1_imnx_1.i386.rpm
http://download.immunix.org/ImmunixOS/7.0/updates/RPMS/samba-client-2.0.10-1_imnx_1.i386.rpm
http://download.immunix.org/ImmunixOS/7.0/updates/RPMS/samba-common-2.0.10-1_imnx_1.i386.rpm
http://download.immunix.org/ImmunixOS/7.0/updates/SRPMS/samba-2.0.10-1_imnx_1.src.rpm
For Caldera:
ftp://ftp.calderasystems.com/pub/updates/OpenLinux/2.3/current/RPMS/
ftp://ftp.calderasystems.com/pub/updates/OpenLinux/2.3/current/SRPMS
RPMS/samba-2.0.5-3.i386.rpm
RPMS/samba-doc-2.0.5-3.i386.rpm
RPMS/smbfs-2.0.5-3.i386.rpm
RPMS/swat-2.0.5-3.i386.rpm
SRPMS/samba-2.0.5-3.src.rpm
ftp://ftp.calderasystems.com/pub/updates/eServer/2.3/current/RPMS/
ftp://ftp.calderasystems.com/pub/updates/eServer/2.3/current/SRPMS
RPMS/samba-2.0.5-3S.i386.rpm
RPMS/samba-doc-2.0.5-3S.i386.rpm
RPMS/smbfs-2.0.5-3S.i386.rpm
RPMS/swat-2.0.5-3S.i386.rpm
SRPMS/samba-2.0.5-3S.src.rpm
ftp://ftp.calderasystems.com/pub/updates/eDesktop/2.4/current/RPMS/
ftp://ftp.calderasystems.com/pub/updates/eDesktop/2.4/current/SRPMS
RPMS/samba-2.0.6-4.i386.rpm
RPMS/samba-doc-2.0.6-4.i386.rpm
RPMS/smbfs-2.0.6-4.i386.rpm
RPMS/swat-2.0.6-4.i386.rpm
SRPMS/samba-2.0.6-4.src.rpm
ftp://ftp.caldera.com/pub/updates/OpenLinux/3.1/Server/current/RPMS/
ftp://ftp.caldera.com/pub/updates/OpenLinux/3.1/Server/current/SRPMS
RPMS/samba-2.0.9-1.i386.rpm
RPMS/samba-doc-2.0.9-1.i386.rpm
RPMS/smbfs-2.0.9-1.i386.rpm
RPMS/swat-2.0.9-1.i386.rpm
SRPMS/samba-2.0.9-1.src.rpm
ftp://ftp.caldera.com/pub/updates/OpenLinux/3.1/Workstation/current/RPMS/
ftp://ftp.caldera.com/pub/updates/OpenLinux/3.1/Workstation/current/SRPMS
RPMS/samba-2.0.9-1.i386.rpm
RPMS/samba-doc-2.0.9-1.i386.rpm
RPMS/smbfs-2.0.9-1.i386.rpm
RPMS/swat-2.0.9-1.i386.rpm
SRPMS/samba-2.0.9-1.src.rpm
For SuSE:
ftp://ftp.suse.com/pub/suse/i386/update/7.2/n2/samba-2.2.0a-0.i386.rpm
ftp://ftp.suse.com/pub/suse/i386/update/7.2/n1/smbclnt-2.2.0a-0.i386.rpm
ftp://ftp.suse.com/pub/suse/i386/update/7.2/zq1/samba-2.2.0a-0.src.rpm
ftp://ftp.suse.com/pub/suse/i386/update/7.1/n2/samba-2.0.10-0.i386.rpm
ftp://ftp.suse.com/pub/suse/i386/update/7.1/n1/smbclnt-2.0.10-0.i386.rpm
ftp://ftp.suse.com/pub/suse/i386/update/7.1/zq1/samba-2.0.10-0.src.rpm
ftp://ftp.suse.com/pub/suse/i386/update/7.0/n1/samba-2.0.10-0.i386.rpm
ftp://ftp.suse.com/pub/suse/i386/update/7.0/n1/smbclnt-2.0.10-0.i386.rpm
ftp://ftp.suse.com/pub/suse/i386/update/7.0/zq1/samba-2.0.10-0.src.rpm
ftp://ftp.suse.com/pub/suse/i386/update/6.4/n1/samba-2.0.10-0.i386.rpm
ftp://ftp.suse.com/pub/suse/i386/update/6.4/zq1/samba-2.0.10-0.src.rpm
ftp://ftp.suse.com/pub/suse/i386/update/6.3/n1/samba-2.0.10-0.i386.rpm
ftp://ftp.suse.com/pub/suse/i386/update/6.3/zq1/samba-2.0.10-0.src.rpm
ftp://ftp.suse.com/pub/suse/sparc/update/7.1/n2/samba-2.0.10-0.sparc.rpm
ftp://ftp.suse.com/pub/suse/sparc/update/7.1/n1/smbclnt-2.0.10-0.sparc.rpm
ftp://ftp.suse.com/pub/suse/sparc/update/7.1/zq1/samba-2.0.10-0.src.rpm
ftp://ftp.suse.com/pub/suse/sparc/update/7.0/n1/samba-2.0.10-0.sparc.rpm
ftp://ftp.suse.com/pub/suse/sparc/update/7.0/n1/smbclnt-2.0.10-0.sparc.rpm
ftp://ftp.suse.com/pub/suse/sparc/update/7.0/zq1/samba-2.0.10-0.src.rpm
ftp://ftp.suse.com/pub/suse/axp/update/7.1/n2/samba-2.0.10-0.alpha.rpm
ftp://ftp.suse.com/pub/suse/axp/update/7.1/n1/smbclnt-2.0.10-0.alpha.rpm
ftp://ftp.suse.com/pub/suse/axp/update/7.1/zq1/samba-2.0.10-0.src.rpm
ftp://ftp.suse.com/pub/suse/axp/update/7.0/n1/samba-2.0.10-0.alpha.rpm
ftp://ftp.suse.com/pub/suse/axp/update/7.0/n1/smbclnt-2.0.10-0.alpha.rpm
ftp://ftp.suse.com/pub/suse/axp/update/7.0/zq1/samba-2.0.10-0.src.rpm
ftp://ftp.suse.com/pub/suse/axp/update/6.4/n1/samba-2.0.10-0.alpha.rpm
ftp://ftp.suse.com/pub/suse/axp/update/6.4/zq1/samba-2.0.10-0.src.rpm
ftp://ftp.suse.com/pub/suse/axp/update/6.3/n1/samba-2.0.10-0.alpha.rpm
ftp://ftp.suse.com/pub/suse/axp/update/6.3/zq1/samba-2.0.10-0.src.rpm
ftp://ftp.suse.com/pub/suse/ppc/update/7.1/n2/samba-2.0.10-0.ppc.rpm
ftp://ftp.suse.com/pub/suse/ppc/update/7.1/n1/smbclnt-2.0.10-0.ppc.rpm
ftp://ftp.suse.com/pub/suse/ppc/update/7.1/zq1/samba-2.0.10-0.src.rpm
ftp://ftp.suse.com/pub/suse/ppc/update/7.0/n1/samba-2.0.10-0.ppc.rpm
ftp://ftp.suse.com/pub/suse/ppc/update/7.0/n1/smbclnt-2.0.10-0.ppc.rpm
ftp://ftp.suse.com/pub/suse/ppc/update/7.0/zq1/samba-2.0.10-0.src.rpm
ftp://ftp.suse.com/pub/suse/ppc/update/6.4/n1/samba-2.0.10-0.ppc.rpm
ftp://ftp.suse.com/pub/suse/ppc/update/6.4/zq1/samba-2.0.10-0.src.rpm
For Mandrake Linux:
Linux-Mandrake 7.1: 7.1/RPMS/samba-2.0.10-1.3mdk.i586.rpm
7.1/RPMS/samba-client-2.0.10-1.3mdk.i586.rpm
7.1/RPMS/samba-common-2.0.10-1.3mdk.i586.rpm
7.1/SRPMS/samba-2.0.10-1.3mdk.src.rpm
Linux-Mandrake 7.2: 7.2/RPMS/samba-2.0.10-1.2mdk.i586.rpm
7.2/RPMS/samba-client-2.0.10-1.2mdk.i586.rpm
7.2/RPMS/samba-common-2.0.10-1.2mdk.i586.rpm
7.2/SRPMS/samba-2.0.10-1.2mdk.src.rpm
Mandrake Linux 8.0: 8.0/RPMS/samba-2.0.10-1.1mdk.i586.rpm
8.0/RPMS/samba-client-2.0.10-1.1mdk.i586.rpm
8.0/RPMS/samba-common-2.0.10-1.1mdk.i586.rpm
8.0/SRPMS/samba-2.0.10-1.1mdk.src.rpm
Corporate Server 1.0.1: 1.0.1/RPMS/samba-2.0.10-1.3mdk.i586.rpm
1.0.1/RPMS/samba-client-2.0.10-1.3mdk.i586.rpm
1.0.1/RPMS/samba-common-2.0.10-1.3mdk.i586.rpm
1.0.1/SRPMS/samba-2.0.10-1.3mdk.src.rpm