Password encryption in 2.2.0
Michael B. Allen
mballen at erols.com
Sat Apr 28 05:10:22 GMT 2001
On Sat, Apr 28, 2001 at 02:06:30PM +0900, Richard Sharpe wrote:
> >Actually I think I understand. If the algo is:
> >
> >P24 = E(MD4(U(PN) + 5 NULLs, C8))
> >
> >Then your just doing the:
> >
> >MD4(U(PN) + 5 NULLs
> >
> >part first and that's whats in the smbpassword file?
>
> Close ... Just the MD4(PW) is kept in the smbpasswd file for the NT
> Password. It is not converted to upper case.
>
> However, the LanMan hash is also kept there, and that is really bogus. It
> does UC the password, and splits it into two 7-Char (56-bit) keys to DES.
Ok. Curiosity completely satisfied :~) Thanks.
This reminds me of something that hung me up pretty bad when I did this
auth for jcifs. The CIFS docs read:
2.10.1 Pre NT LM 0.12
o P14 is a 14 byte string containing the user's password in clear text,
upper cased, padded with spaces.
... wtih spaces?!
:~)
--
signature pending
More information about the samba-technical
mailing list