[cifs-protocol] [REG:111101553031054] RE: SystemLibraryDTC

Hongwei Sun hongweis at microsoft.com
Thu Oct 20 15:25:02 MDT 2011


  We also saw another case of usage of this fixed session key other than loopback behavior in NTLM.    Based on your testing before, could you tell me the repro steps, or  scenario , so I can have a repro to debug it ?




-----Original Message-----
From: Andrew Bartlett [mailto:abartlet at samba.org] 
Sent: Tuesday, October 18, 2011 4:03 PM
To: Hongwei Sun
Cc: cifs-protocol at cifs.org; MSSolve Case Email
Subject: Re: [REG:111101553031054] RE: [cifs-protocol] SystemLibraryDTC

On Tue, 2011-10-18 at 19:57 +0000, Hongwei Sun wrote:
> Andrew,
>   I confirmed that the fixed session key "SystemLibraryDTC" is only 
> used by NTLM when the client and server are both on the same machine.
> This type of loopback behavior doesn't affect  interoperability and
> thus is not covered by the protocol documentation.   Please let me
> know if you have more questions.

This is not the case, or else we would not know about it, and would not need to deal with it for interoperability.  

Sadly you will need to dig deeper, as we discovered it the hard way (ie, needing to discover the magic fixed key by DES brute force), I can assure you it is used outside the server.

Andrew Bartlett

Andrew Bartlett                                http://samba.org/~abartlet/
Authentication Developer, Samba Team           http://samba.org

More information about the cifs-protocol mailing list