[cifs-protocol] [REG:115021312396540] Wrong Key length in MS-BKRP 18.104.22.168.2.1 Processing a Valid ServerWrap Wrapped Secret
vilmosf at microsoft.com
Thu Feb 12 18:34:16 MST 2015
[dochelp to Bcc, SR # to Subject]
Thank you for your question. I created case SR 115021312396540 to track this issue with the Protocol Documentation support team. Edgar from our team will begin working with you.
Vilmos Foltenyi - MSFT
From: Andrew Bartlett [mailto:abartlet at samba.org]
Sent: Thursday, February 12, 2015 15:55
To: Interoperability Documentation Help
Cc: cifs-protocol at lists.samba.org
Subject: Wrong Key length in MS-BKRP 22.214.171.124.2.1 Processing a Valid ServerWrap Wrapped Secret
The MS-BKRP protocol docs at "126.96.36.199.2.1 Processing a Valid ServerWrap Wrapped Secret" (point 1) and "188.8.131.52.1 BACKUPKEY_BACKUP_GUID" (point 3) clearly state that the first 64 bytes of the secret are used for the key. This is not the case - testing by extracting the key from the Windows DC over LSA QuerySecret show that the entire key (256 bytes), not the first 64 bytes, is used.
Please correct the docs.
Authentication Developer, Samba Team http://samba.org
Samba Developer, Catalyst IT http://catalyst.net.nz/services/samba
More information about the cifs-protocol