Windows and NTLM authentication

Andrew Bartlett abartlet at samba.org
Wed May 5 23:36:58 GMT 2004


On Tue, 2004-05-04 at 01:54, Tom Alsberg wrote:
> Hi there.
> 
> Firstly:
> 
> * When doing NTLM authentication, why is the challenge seen on the
>   network (sniffing/dump with Ethereal) different than the challenge
>   written to the log, and provided to the auth module as
>   context->challenge.data?

If you are using NTLM2 (an option under NTLMSSP), then the challenge is
derived from:

effective_chal = head(8, MD5(client_challenge, server_challenge))

Andrew Bartlett

-- 
Andrew Bartlett                                 abartlet at pcug.org.au
Manager, Authentication Subsystems, Samba Team  abartlet at samba.org
Student Network Administrator, Hawker College   abartlet at hawkerc.net
http://samba.org     http://build.samba.org     http://hawkerc.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba-technical/attachments/20040506/5ba356ca/attachment.bin


More information about the samba-technical mailing list