[jcifs] jcifs-1.3.0 released / NTLMv2 Support
Michael B Allen
miallen at ioplex.com
Sat Oct 25 22:21:42 GMT 2008
NTLMv2 has been fully implemented and will be used by default.
To emulate the old behavior you must set jcifs.lmCompatibility = 0 and jcifs.smb.client.useExtendedSecurity = false (new defaults are 3 and true respectively).
NTLMv2 and NTLMv1 over NTLMSSP has been fairly well tested with and without SMB signing negotiated and various NTLMSSP flags (e.g. NTLMSSP_NEGOTIATE_NTLM2).
Note: The NTLM HTTP Filter does not and can never support NTLMv2 as it uses a main-in-the-middle technique that is broken by NTLMSSP's "target information" used in computing password hashes. However, the existing Filter should continue to work.
More information about the jcifs