extended security & Negprot response

Richard Sharpe rsharpe at ns.aus.com
Wed Aug 7 13:28:01 GMT 2002

On Wed, 7 Aug 2002, Steven French wrote:

> There had been some discussion about the first 16 byte field in the data
> area of the negprot response (before the security blob) when extended
> security is enabled.   Ethereal and the SNIA CIFS spec correctly indicate
> that it is the Server's GUID but head's negprot_spnego (in smbd/negprot.c)
> puts an ascii name in there.   Maybe its harmless but I was intrigued that
> the GUID in the field is stored in the registry - it matches exactly with
> the value of services\lanmanserver\parameters\GUID in its local registry -
> which makes sense since it has to be available for non-AD connected
> machines including standalone workstations.

I guess the problem is that UNIX machines don't [yet] have GUIDs?

Richard Sharpe, rsharpe at ns.aus.com, rsharpe at samba.org, 
sharpe at ethereal.com

More information about the samba-technical mailing list