You are not logged in.
Pages: 1
Topic closed
Hi,
After a recent upgrade I'm unable to connect to my CIFS shares:
Oct 15 12:23:42 mir kernel: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3 (or SMB2.1) specify vers=1.0 on mount.
Oct 15 12:23:42 mir systemd[1]: mnt-storage\x40krux.mount: Mount process exited, code=exited status=32
Oct 15 12:23:42 mir systemd[1]: mnt-storage\x40krux.mount: Failed with result 'exit-code'.
Oct 15 12:23:42 mir systemd[1]: Failed to mount /mnt/storage@krux.
Oct 15 12:23:42 mir kernel: CIFS VFS: Unable to select appropriate authentication method!
Oct 15 12:23:42 mir kernel: CIFS VFS: Send error in SessSetup = -22
Oct 15 12:23:42 mir kernel: CIFS VFS: cifs_mount failed w/return code = -22
the mount is described in fstab as follows:
//krux.lan/storage /mnt/storage@krux cifs user,noauto,nofail,x-systemd.automount,x-systemd.requires=network-online.target,x-systemd.device-timeout=10,x-systemd.idle-timeout=10min,credentials=/home/zsjoska/.smbcred/.localsmbcred,nosetuids,noperm,iocharset=utf8,sec=ntlm 0 0
Based on the error message, I tried to add the vers=1.0 param but didn't help.
Does anybody had the same problem? Is there a solution?
Last edited by zsjoska (2017-10-16 16:33:53)
Offline
What does "didn't help" mean?
The particular message should have gone/changed, so what's the updated error?
Online
What SMB version provides //krux.lan ? Or what System is this, Windows/Version, NAS, Linux-Server ?
Offline
Hi zsjoska,
You seems to be on the good way, just miss some information...
FYI :
Linux 4.13 has been released on Sun, 3 Sep 2017.
1.6. CIFS defaults to SMB3.0
Due to recent publicity about security vulnerabilities in the much older CIFS dialect, move the default dialect to the widely accepted (and quite secure) SMB3.0 dialect from the old default of the CIFS dialect. Both Microsoft and CERT now strongly recommend not using the older CIFS dialect (SMB Security Best Practices "recommends disabling SMBv1"). SMB3 is both secure and widely available: in Windows 8 and later, Samba and Macs. Users can still choose to explicitly mount with the less secure dialect (for old servers) by choosing "vers=1.0" on the cifs mount
Offline
Yes, I was on the good way, it works now, I had to do a restart.
Good point for seth for asking the updated error log... I should have noticed that the default dialect warning should be missing once I added vers=1.0
Thank you very mutch for all answers.
Offline
Cool.
Please always remember to mark threads as [SOLVED] by editing your initial post so that others will no there's no question left and maybe an answer to find.
Online
For me worked also removing ",sec=ntlm" (which can be removed in v.3.0), it is better than forcing protocol to 1.0. It was against samba 4.3.11-ubuntu server.
Last edited by misarm (2018-06-18 14:17:42)
Offline
Taking this opportunity to close this old thread.
Nothing is too wonderful to be true, if it be consistent with the laws of nature -- Michael Faraday
Sometimes it is the people no one can imagine anything of who do the things no one can imagine. -- Alan Turing
---
How to Ask Questions the Smart Way
Online
Thanks for sharing, however the post is already [SOLVED]. Please don't necrobump old posts
Closing.
Offline
Pages: 1
Topic closed