Vista CFX join and 'out of order' GSSAPI messages
Andrew Bartlett
abartlet at samba.org
Thu Jul 24 21:34:16 GMT 2008
On Thu, 2008-07-24 at 13:52 -0400, Jeffrey Altman wrote:
> To the best of my knowledge Microsoft does not support out of order
> delivery of messaging.
The issue here is incorrect computation of the sequence number, and the
crypto state, when using DCE_STYLE. The problem here is that the first
wrapped packet from the Vista client has a 'wrong' sequence number.
(The checksum failure might actually be due to AEAD - need to look into
how this works with CFX compared with arcfour).
Andrew Bartlett
--
Andrew Bartlett
http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Samba Developer, Red Hat Inc.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba-technical/attachments/20080725/b93b306f/attachment.bin
More information about the samba-technical
mailing list