some questions about loggin on and MS RPCs

Hernan Ochoa soporte at sentinel.com.ar
Sat Jun 26 06:23:42 GMT 1999


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


Hi, i have a couple of questions


i've been reading a lot of things, samba source code, cifs6.txt, cifsntdomain.txt, cifsrap2.txt and more but i have some doubts.

what is actually a domain logon?.

i'm at my nt workstation, i want to logon to my PDC.
i issue my user, password, and then what happens?

i connect to NETLOGON, i establish a secure channel using my machine trust account and generating the SKey. now i issue a SAM_LOGON, if i'm doing an interactive logon, i send the LM/NT hashes. if everything was ok, so, right, i could log on?.

and now what? a SAM_LOGOFF is done? and the connection with the PDC is broken?.
or what? 

now, if i issue a

	net use x: \\MYSERVER\C$

this is done using a new SMB connection or the previous logon connection is used?

(MYSERVER is the name of my PDC).

and what, the PDC redirector's service remembers my credentials and based on that it decides if i can access the C$ share???.

and picture this situation.

i'am on my nt workstation, i'm not part of any domain.

i log on locally to the nt workstation, as administrator passwd: foo
ok, no, i do this

usrmgr \\MYSERVER

and the thing is, the account administrator at MYSERVER has the same password (foo) as in my workstation, so, now do anything i want with the users of that domain.

ok, why is that??????.

there's something about the authentication method of RPC and PIPE that i don't understand.

i do a sessionsetup anonymously, i do a tree connect anonymously to IPC$/IPC, annd then i do a SMB_TRANSACT to \\PIPE\LSARPC for example, ok, where did the authentacion occurred?????????? all the conections where anonymous. that's the thing i'm missing, and i can't seem to find.

thanks in advance.


-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 5.0i for non-commercial use
Charset: noconv

iQA/AwUBN3Rj5YUFmApOzIXUEQImYACcCoVxQDWtSdizP8ahdBUwDa8TjxcAn1CH
YbwZVzFqxvEiFPm1OQYP025N
=IRe4
-----END PGP SIGNATURE-----



More information about the samba-technical mailing list