Samba Password Encryption vs. C209

Jeremy Allison jeremy at
Fri Jan 26 03:09:48 GMT 2001

On Thu, Jan 25, 2001 at 01:45:02PM -0800, Andrew Edem wrote:
> C208 (CAE Specification) Protocols for X/Open PC Interworking: SMB,
> Version 2 says that lan manager passwords should be encrypted against a
> string of eight question marks, then encrypted against the challenge key
> presented by the server, yet samba encrypts the password against
> "\x4B\x47\x53\x21\x40\x23\x24\x25".
> Secondly, the DES routines in Samba seem to vary from the other
> algorithms I've seen. (I'm assuming these are either related, or the
> X/Open standard is VERY off.)
> I guess I'm wondering why Samba differs from the standard.

You got it - the X/Open standard is *very* off :-).
There's lots of history behind this - too much to type
in right now (I'm at a customer site).

Samba is correct.


Buying an operating system without source is like buying
a self-assembly Space Shuttle with no instructions.

More information about the samba-technical mailing list