Crazy ideas about Kerberos, NTLM and PACs... (was NTLMSSP...)
Jean Francois Micouleau
Jean-Francois.Micouleau at dalalu.fr
Mon Nov 19 04:44:01 GMT 2001
On Mon, 19 Nov 2001, Andrew Bartlett wrote:
> Easy, you get sombody else to make up the challange and check the
> response. This is how 'security=server' (soon to be auth order = ...
> smbserver ...) works.
So basically you're saying: "to fix a problem let's move it to another
piece of software" !
Is that me or really I should do something else ?
> OR you make up the challange yourself and use a trust account of some
> kind to show both it and the password to the server for a yea/nea.
> (like security=domain, soon to be auth order = ... ntdomain... ).
I like Star Trek and David Vincent, but there it's over anything any
hollywood writers can come up. ;-)
More information about the samba-technical