[Patch] Always start with the NTLMSSP_NEGOTIATE_ALWAYS_SIGN flag enabled

Jeremy Allison jra at samba.org
Wed Nov 15 22:21:27 GMT 2006

On Tue, Nov 14, 2006 at 09:40:29AM +0100, Kai Blin wrote:
> Hi folks,
> Testing in Windows shows that (at least for Windows 2000) NTLM always tries 
> the NTLMSSP_NEGOTIATE_ALWAYS_SIGN flag. It is needed to do the dummy signing 
> RPC uses if NTLMSSP_NEGOTIATE_SIGN is not negotiated.
> This patch always enables that flag at first and handles switching it of if 
> the communication partner does not support it.

Can you check Windows 2003 also. The changes I made to the
flags in the ntlmssp code were designed to match w2k3.

I'd like to know if this is correct.


More information about the samba-technical mailing list