LDAP questions and password generation

Andrew Bartlett abartlet at samba.org
Wed Aug 16 23:10:02 GMT 2006

On Thu, 2006-08-17 at 01:04 +0200, Malte Zacharias wrote:
> Roland Gruber wrote:
> > Hi Malte,
> > 
> > Malte Zacharias schrieb:
> >> Is there someplace where it is already documented or some sample
> >> code in either Java, Perl, PHP or Smalltalk? Unfortunately I'm not able
> >> to read C well enough I believe.
> > 
> > see this file for a PHP implementation:
> > 
> > http://lam.cvs.sourceforge.net/lam/lam/lib/createntlm.inc?view=markup
> > 
> Some info I just found on another Mailing List,
> they're suggesting this hash is the same as the one used
> in NTLM HTTP Auth, is there anyone who can support or deny
> that statement?

The NTLM hash is the shared secret that NTLM authentication is based on.
It cannot however be directly compared with any network value, instead
you do challenge-response authentication on it.  See for example how
mod_ntlm_winbind does this, passing the result to Samba to verify.

Andrew Bartlett

Andrew Bartlett                                http://samba.org/~abartlet/
Authentication Developer, Samba Team           http://samba.org
Samba Developer, Red Hat Inc.                  http://redhat.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba-technical/attachments/20060817/3fab8ac7/attachment.bin

More information about the samba-technical mailing list