Question on NTLMv2 over SMB

Yimin Chen (ymchen) ymchen at
Sat Sep 10 18:09:38 GMT 2005

Hi Andrew,

It is due to time constraint on the project, I am adding NTLMv2 based on
the current NTLM support, so can't disturb the current code too much.

When you said "username in the NTLMv2 blob", you mean the unicode
username used in NTLMv2 hash, right? I didn't find the username being
used in the blob?

I also have a question about the NetBIOS name of the destination that is
used in NTLMv2 hash calculation, where does client obtain this
information? From the target name in the type-2 message? From the Target
Information block in type-2 message? If obtained in Target information
block, how will we know which NetBIOS name (the domain's or the
server's) the client had chosen to do the calculation?


> -----Original Message-----
> From: Andrew Bartlett [mailto:abartlet at] 
> Sent: Friday, September 02, 2005 4:15 PM
> To: Yimin Chen (ymchen)
> Cc: samba-technical at
> Subject: RE: Question on NTLMv2 over SMB
> On Fri, 2005-09-02 at 16:11 -0700, Yimin Chen (ymchen) wrote:
> > Another question:
> > 
> > 1)  Does the username passed over SMB have to be in 
> unicode, even if 
> > flag2 indicates unicode not supported?
> No, but the username in the NTLMv2 blob must be in unicode.
> But why are you doing 'security=server' passthough?  This 
> really breaks too often to be reliable, as the squid folks 
> found out - that's why they use winbind...
> Andrew Bartlett
> -- 
> Andrew Bartlett                                
> Samba Developer, SuSE Labs, Novell Inc.
> Authentication Developer, Samba Team 
> Student Network Administrator, Hawker College

More information about the samba-technical mailing list