Implementing rpc bind SPNEGO authentication in Samba 3
Gerald (Jerry) Carter
jerry at samba.org
Mon Jul 4 16:48:36 GMT 2005
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Jeremy Allison wrote:
> On Mon, Jul 04, 2005 at 10:20:34AM -0500, Gerald (Jerry) Carter wrote:
>>-----BEGIN PGP SIGNED MESSAGE-----
>>Hash: SHA1
>>
>>any volunteers ? Looks like we'll be needing this to deal
>>with some Windows 2003 sp1 issues (even without kerberos
>>tickets in the bind request).
>
> Oh crap - what is needed on this ?
I've got a trace from a W2k3 sp1 box trying to do an rpcbind
on the winreg pipe. I'm trying to get more details from the
original poster. But the client is requesting data privacy
so it must be something important :-)
Since the authentication fails with an rpc fault, the client
drops back to an clear rpc requests. I've just got a feeling
that some part of the communication will break down eventually
if we don't start supporting the SPNEGO auth type in rpc binds.
cheers, jerry
=====================================================================
Alleviating the pain of Windows(tm) ------- http://www.samba.org
GnuPG Key ----- http://www.plainjoe.org/gpg_public.asc
"I never saved anything for the swim back." Ethan Hawk in Gattaca
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.0 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
iD8DBQFCyWhkIR7qMdg1EfYRAsplAJ4/XFbTQ/QOrADAx4DvewKT8kF9GgCfWIhP
1+Gjn7qMRyNmcnma258doyI=
=f9FC
-----END PGP SIGNATURE-----
More information about the samba-technical
mailing list