[cifs-protocol] 119040819792359 [MS-SAMR] SamrSetInformationUser2 over an authenticated DCERPC connection

Sreekanth Nadendla srenaden at microsoft.com
Mon Apr 8 13:47:39 UTC 2019 

Casemail in Cc
Dochelp in Bcc

Hello Stefan,
Thank you for your inquiry. We have created incident # 119040819792359 to investigate this issue. One of the Open specifications team member will contact you shortly.

Regards,
Sreekanth Nadendla
Microsoft Windows Open Specifications

-----Original Message-----
From: Stefan Metzmacher <metze at samba.org> 
Sent: Monday, April 8, 2019 7:16 AM
To: Andreas Schneider <asn at samba.org>; Interoperability Documentation Help <dochelp at microsoft.com>
Cc: cifs-protocol <cifs-protocol at lists.samba.org>
Subject: Re: [cifs-protocol] [MS-SAMR] SamrSetInformationUser2 over an authenticated DCERPC connection

Hi,

> I got the two scenarios authenticated DCERPC connection over SMB 
> (named pipe) and TCP/IP working with krb5, speneg or ntlmssp 
> authentication type and an authentication level set to PRIVACY (seal) 
> if I use the fixed string "SystemLibraryDTC" as the session key!
> 
> Could you please update the documentation, it would also be great to 
> know if this is the case for all Windows versions.
> 
> The code changes to get this correctly working with rpcclient (using 
> "SystemLibraryDTC" as the session key for sealed and authenticated 
> DCEPRC connections can be found here:
> 
>     https://gitlab.com/samba-team/samba/merge_requests/361
> 
> 
> Thanks you very much for your assistance.

Something similar was discussed before here:
https://lists.samba.org/archive/cifs-protocol/2012-June/002343.html

And I'm pretty sure is that constant was present somewhere in the Window Protocols documentation, but I can't find it anymore.

So somethings has changed in the documentation and also the implementation over time.

It was also part of the discussion with Microsoft around CVE-2016-2118, but the Microsoft fixes for that CVE didn't include any change.

So I guess the changes happened after the CVE-2016-2118 changes.

metze

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 849 bytes
Desc: signature.asc
URL: <http://lists.samba.org/pipermail/cifs-protocol/attachments/20190408/c30689ab/signature.sig>

More information about the cifs-protocol mailing list