Passthough security fix.

Jeremy Allison jallison at whistle.com
Tue Apr 21 01:35:44 GMT 1998


Andrew Tridgell wrote:
> 
> Also, you'll need to send the random garbage first, not 2nd.
> 

I don't see that. You need to send the good password first,
as if you send a bad password first then how do you tell
the difference between a real bad password and the random
one.

I envisage it as :

1). session_setup_and_X with the good password.
    (if this succeeds with the guest bit set then abort).
    1a). If this fails then abort.
2). ulogoff the above.
3). session_setup_and_X with the bad password.
    If this succeeds and the guest bit was not
    set then ulogoff the above and abort.
4). Allow the logon.

How do you see the logic ?

Jeremy.
-- 
--------------------------------------------------------
Buying an operating system without source is like buying
a self-assembly Space Shuttle with no instructions.
--------------------------------------------------------


More information about the samba-technical mailing list