bug in ntlmssp code

Luke Kenneth Casson Leighton lkcl at samba-tng.org
Mon Sep 3 17:37:22 GMT 2001

the server-side ntlmssp api increments  ntlmssp_seq_num
twice.  this obviously isn't very good, but it gets
away with the first packet-exchange because the sequence
nuimber is correct - once and only once.

that's enough for one password change, btw, which is
what ntlmssp _mostly_ gets used for :)

so it's a bug, but not an issue - for now.


More information about the samba-technical mailing list