Question on NTLMv2 over SMB
Andrew Bartlett
abartlet at samba.org
Tue Jun 28 04:08:19 GMT 2005
On Mon, 2005-06-27 at 21:02 -0700, Yimin Chen wrote:
> Hi Andrew,
>
> Thanks for your response. What I was testing was pass-through
> authentication, so my program is acting as proxy and handing the LMv2
> response from browser to the domain controller. My program is not
> encoding the LMv2 response.
Check you are not messing up the username and domain, which are part of
the response.
> Client browser actually sent both LMv2 and NTLMv2 response, I just
> handed over the LMv2 response in the CaseInsensitivePassword field,
> while leaving the CaseSensitivePassword empty. Is this the right way to
> do it, if I just wanted to see whether the DC will honor the LMv2 response?
That sounds right.
Andrew Bartlett
--
Andrew Bartlett http://samba.org/~abartlet/
Samba Developer, SuSE Labs, Novell Inc. http://suse.de
Authentication Developer, Samba Team http://samba.org
Student Network Administrator, Hawker College http://hawkerc.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba-technical/attachments/20050628/d126d1ed/attachment.bin
More information about the samba-technical
mailing list