Error - Server doesn't allow session using username '', password ''

Question

Error - Server doesn't allow session using username '', password ''

Ashutosh-Kukreti opened this issue 4 years ago · 4 comments

I'm using this on Metasploitable 2 but still I'm getting following errors:

Session Check on 192.1x.x.x |

[] Check for null session
[-] Server doesn't allow session using username '', password ''
[] Check for random user session
[-] Server doesn't allow session using username 'sqjtyjhk', password ''
[-] Sessions failed. Aborting remainder of tests.

Answer 1 · 2020-05-07T02:21:41.000Z

I got it the problem is in samba
Cannot connect to server. Error was NT_STATUS_CONNECTION_DISCONNECTED
with samba 4.6.2

To improve security, the NT LAN manager version 1 (NTLMv1) protocol is now disabled by default. If you require the insecure NTLMv1 protocol,
edit /etc/samba/smb.conf and under [global] add

client min protocol = NT1

then
restart samba services or your pc

Answer 2 · 2020-05-07T11:08:24.000Z

Glad you sorted it out!

Answer 3 · 2020-08-14T22:08:29.000Z

I had some time today to have a look at this again. I implemented a detection for SMBv1. Your config is hopefully no longer needed, it worked at least in my local setup. Could you remove the "client min protocol" line again from your smb.conf and check if it works? enum4linux-ng will load the same config line from a local file.

Answer 4 · 2022-07-11T10:48:20.000Z

Still not working