Crazy ideas about Kerberos, NTLM and PACs... (was NTLMSSP...)

Jean Francois Micouleau Jean-Francois.Micouleau at
Mon Nov 19 04:44:01 GMT 2001

On Mon, 19 Nov 2001, Andrew Bartlett wrote:

> Easy, you get sombody else to make up the challange and check the
> response.  This is how 'security=server' (soon to be auth order = ...
> smbserver ...) works.

So basically you're saying: "to fix a problem let's move it to another
piece of software" !

Is that me or really I should do something else ?

> OR you make up the challange yourself and use a trust account of some
> kind to show both it and the password to the server for a yea/nea.
> (like security=domain, soon to be auth order = ... ntdomain... ).

I like Star Trek and David Vincent, but there it's over anything any
hollywood writers can come up. ;-)

More information about the samba-technical mailing list