[cifs-protocol] [REG:111101553031054] RE: SystemLibraryDTC
hongweis at microsoft.com
Thu Oct 20 15:25:02 MDT 2011
We also saw another case of usage of this fixed session key other than loopback behavior in NTLM. Based on your testing before, could you tell me the repro steps, or scenario , so I can have a repro to debug it ?
From: Andrew Bartlett [mailto:abartlet at samba.org]
Sent: Tuesday, October 18, 2011 4:03 PM
To: Hongwei Sun
Cc: cifs-protocol at cifs.org; MSSolve Case Email
Subject: Re: [REG:111101553031054] RE: [cifs-protocol] SystemLibraryDTC
On Tue, 2011-10-18 at 19:57 +0000, Hongwei Sun wrote:
> I confirmed that the fixed session key "SystemLibraryDTC" is only
> used by NTLM when the client and server are both on the same machine.
> This type of loopback behavior doesn't affect interoperability and
> thus is not covered by the protocol documentation. Please let me
> know if you have more questions.
This is not the case, or else we would not know about it, and would not need to deal with it for interoperability.
Sadly you will need to dig deeper, as we discovered it the hard way (ie, needing to discover the magic fixed key by DES brute force), I can assure you it is used outside the server.
Andrew Bartlett http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
More information about the cifs-protocol