LDAP questions and password generation
Andrew Bartlett
abartlet at samba.org
Wed Aug 16 23:10:02 GMT 2006
On Thu, 2006-08-17 at 01:04 +0200, Malte Zacharias wrote:
> Roland Gruber wrote:
>
> > Hi Malte,
> >
> > Malte Zacharias schrieb:
> >> Is there someplace where it is already documented or some sample
> >> code in either Java, Perl, PHP or Smalltalk? Unfortunately I'm not able
> >> to read C well enough I believe.
> >
> > see this file for a PHP implementation:
> >
> > http://lam.cvs.sourceforge.net/lam/lam/lib/createntlm.inc?view=markup
> >
> Some info I just found on another Mailing List,
> they're suggesting this hash is the same as the one used
> in NTLM HTTP Auth, is there anyone who can support or deny
> that statement?
The NTLM hash is the shared secret that NTLM authentication is based on.
It cannot however be directly compared with any network value, instead
you do challenge-response authentication on it. See for example how
mod_ntlm_winbind does this, passing the result to Samba to verify.
Andrew Bartlett
--
Andrew Bartlett http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Samba Developer, Red Hat Inc. http://redhat.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba-technical/attachments/20060817/3fab8ac7/attachment.bin
More information about the samba-technical
mailing list