[linux-cifs-client] Re: [RFC/PATCH: 2/2]: CIFS: Add kernel warning if password length exceeds limit

Steve French smfrench at gmail.com
Wed Jan 23 16:44:10 GMT 2008


On Jan 23, 2008 8:46 AM, Suresh Jayaraman <sjayaraman at suse.de> wrote:
> Add a kernel warning if password length exceeds 16 bytes in case of
> "sec=lanman". Also, add password length check as Windows passwords
> are limited to 127 bytes.

You can define passwords longer than 127 bytes in Windows, and the 16 byte
length check is not correct for lanman (it is 14 for lanman).
See below example of adding a user (cut from Windows XP command prompt)

C:\Documents and Settings\Administrator>net user longp
12345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890123456789012345678901234567890
/add

The password entered is longer than 14 characters.  Computers
with Windows prior to Windows 2000 will not be able to use
this account. Do you want to continue this operation? (Y/N) [Y]: y
The command completed successfully.

-- 
Thanks,

Steve


More information about the linux-cifs-client mailing list