Samba Password Encryption vs. C209

Richard Sharpe sharpe at
Fri Jan 26 00:41:37 GMT 2001

At 05:44 PM 1/25/01 -0600, Gerald Carter wrote:
>Andrew Edem wrote:
>> C208 (CAE Specification) Protocols for X/Open PC 
>> Interworking: SMB, Version 2 says that lan 
>> manager passwords should be encrypted against a
>> string of eight question marks, then encrypted against 
>> the challenge key presented by the server, yet samba 
>> encrypts the password against "\x4B\x47\x53\x21\x40\x23\x24\x25".
>I think the ???????? was because they didn't know the 
>encryption key :)  (no joke).
>> Secondly, the DES routines in Samba seem to vary 
>> from the other algorithms I've seen. (I'm assuming these 
>> are either related, or the X/Open standard is VERY off.)

Well, I guess we have to ask what the differences are? 

Secondly, it works! 

>> I guess I'm wondering why Samba differs from the standard.
>Not a clue on this one.  But as Chris said, "The way NT does it"
>is really is the standard.  I don't think the X/Open folks had
>all the details from MS when they wrote that spec.
>Cheers, jerry
>   /\  Gerald (Jerry) Carter                     Professional Services
> \/  VA Linux Systems   gcarter at
>       SAMBA Team          jerry at
>                     jerry at
>       "...a hundred billion castaways looking for a home."
>                                - Sting "Message in a Bottle" ( 1979 )

Richard Sharpe, sharpe at
Samba (Team member,, Ethereal (Team member,
Contributing author, SAMS Teach Yourself Samba in 24 Hours
Author, Special Edition, Using Samba

More information about the samba-technical mailing list