LDAP questions and password generation

Andrew Bartlett abartlet at samba.org
Thu Aug 17 07:46:52 GMT 2006

On Thu, 2006-08-17 at 08:58 +0200, Malte Zacharias wrote:
> Thanks for the clarifications, however I had problems 
> understanding this particular piece, could you explain
> that to me?
> Andrew Bartlett wrote:
> > The NTLM hash is the shared secret that NTLM authentication is based on.
> > It cannot however be directly compared with any network value, instead
> What do you mean with network value in this context?

Some folks mistakenly think that once they have the NTLM hash value,
that 'NTLM Authentication' can be accomplished in PHP (or similar) by
simple value comparison.  it is more complex than that.

Andrew Bartlett

Andrew Bartlett                                http://samba.org/~abartlet/
Authentication Developer, Samba Team           http://samba.org
Samba Developer, Red Hat Inc.                  http://redhat.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba-technical/attachments/20060817/e0c9093b/attachment.bin

More information about the samba-technical mailing list