svn commit: samba r9598 - in trunk/source/rpc_server: .
Andrew Bartlett
abartlet at samba.org
Thu Aug 25 01:31:34 GMT 2005
On Wed, 2005-08-24 at 18:04 -0700, Jeremy Allison wrote:
> On Thu, Aug 25, 2005 at 10:58:50AM +1000, Andrew Bartlett wrote:
> > On Thu, 2005-08-25 at 00:27 +0000, jra at samba.org wrote:
> > > Author: jra
> > > Date: 2005-08-25 00:27:58 +0000 (Thu, 25 Aug 2005)
> > > New Revision: 9598
> > >
> > > WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=rev&root=samba&rev=9598
> > >
> > > Log:
> > > Copy the correct session keys for the NTLMSSP auth.
> >
> > If this is the session key used for sealing passwords (for password set)
> > or secrets (lsa secrets), then once NTLMSSP is established, it is the
> > string "SystemLibraryDTC", not a product of the NTLMSSP layer.
> >
> > The NTLMSSP key is used at the CIFS level, and from there in DCERPC when
> > no additional authentication is performed.
>
> Hmmmm. Ok - yeah, I think that's what it's being used for. In which
> case that is wrong - differently than it was before. I'll check out
> Samba4 code to see how to do this right.
:-)
> Thanks for watching this stuff, I'm still learning :-).
Glad to help, and thanks for looking over the GENSEC code.
Andrew Bartlett
--
Andrew Bartlett http://samba.org/~abartlet/
Samba Developer, SuSE Labs, Novell Inc. http://suse.de
Authentication Developer, Samba Team http://samba.org
Student Network Administrator, Hawker College http://hawkerc.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba-technical/attachments/20050825/42758be7/attachment.bin
More information about the samba-technical
mailing list