nt5rtm joining domain sends password of length 0xf0 uni-chars

Luke Kenneth Casson Leighton lkcl at samba.org
Thu Feb 17 01:29:48 GMT 2000

nt5 sends a random password of 0xf0 UNICODE characters in length when
joining a domain (SamrSetUserInfo - opcode 0x3a, info level 0x18).  i'm
not sure if this is a problem, but it is fairly extreme, and i'd heard
somewhere that there was _supposed_ to be a limit of 128 [UNICODE] chars
on NT passwords?

anyway, for those people who are supporting NT5 wkstas joining to domains,
check your NT# / LM# generation code, make sure it can do _at least_
256-unicode-chars-length passwords.


<a href="mailto:lkcl at samba.org" > Luke Kenneth Casson Leighton    </a>
<a href="http://cb1.com/~lkcl"  > Samba and Network Development   </a>
<a href="http://samba.org"      > Samba Web site                  </a>
<a href="http://www.iss.net"    > Internet Security Systems, Inc. </a>
<a href="http://mcp.com"        > Macmillan Technical Publishing  </a>
ISBN1578701503 DCE/RPC over SMB: Samba and Windows NT Domain Internals

More information about the samba-technical mailing list