[PATCH] Have ntlm_auth reply to GF using a string list
Andrew Bartlett
abartlet at samba.org
Mon Jul 31 02:10:00 GMT 2006
On Sun, 2006-07-30 at 12:25 +0200, Kai Blin wrote:
> Hi folks,
>
> I'm currently porting my ntlm_auth patches to samba4 and I realized that
> returning the negotiated flags as a hex number was pretty NTLMSSP specific
> (and really hard to implement in samba4).
>
> As the SF command uses a list of text flags, I thought it would make sense to
> change the GF command to reply with a list of text flags, too.
>
> Any opinions?
Yep, I think it sounds reasonable, but for this end of things, the
details are highly NTLMSSP specific. That is, you need to know exactly
what options were negotiated, to be able to correctly setup the key
derivations. (ie, all the gunk in ntlmssp_sign.c).
Perhaps modify the code that dumps the NTLMSSP flags, so we have a table
of the strings, and we list them from that?
Andrew Bartlett
--
Andrew Bartlett http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Samba Developer, Red Hat Inc. http://redhat.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba-technical/attachments/20060731/84444bc0/attachment.bin
More information about the samba-technical
mailing list