[jcifs] jcifs-1.3.0 released / NTLMv2 Support

Michael B Allen miallen at ioplex.com
Sat Oct 25 22:21:42 GMT 2008

NTLMv2 has been fully implemented and will be used by default.

To emulate the old behavior you must set jcifs.lmCompatibility = 0 and jcifs.smb.client.useExtendedSecurity = false (new defaults are 3 and true respectively).

NTLMv2 and NTLMv1 over NTLMSSP has been fairly well tested with and without SMB signing negotiated and various NTLMSSP flags (e.g. NTLMSSP_NEGOTIATE_NTLM2).

Note: The NTLM HTTP Filter does not and can never support NTLMv2 as it uses a main-in-the-middle technique that is broken by NTLMSSP's "target information" used in computing password hashes. However, the existing Filter should continue to work.

More information about the jcifs mailing list