Samba Password Encryption vs. C209
Jeremy Allison
jeremy at valinux.com
Fri Jan 26 03:09:48 GMT 2001
On Thu, Jan 25, 2001 at 01:45:02PM -0800, Andrew Edem wrote:
> C208 (CAE Specification) Protocols for X/Open PC Interworking: SMB,
> Version 2 says that lan manager passwords should be encrypted against a
> string of eight question marks, then encrypted against the challenge key
> presented by the server, yet samba encrypts the password against
> "\x4B\x47\x53\x21\x40\x23\x24\x25".
>
> Secondly, the DES routines in Samba seem to vary from the other
> algorithms I've seen. (I'm assuming these are either related, or the
> X/Open standard is VERY off.)
>
> I guess I'm wondering why Samba differs from the standard.
You got it - the X/Open standard is *very* off :-).
There's lots of history behind this - too much to type
in right now (I'm at a customer site).
Samba is correct.
Jeremy.
--
--------------------------------------------------------
Buying an operating system without source is like buying
a self-assembly Space Shuttle with no instructions.
--------------------------------------------------------
More information about the samba-technical
mailing list