Microsoft MCPP and WSPP docs
ronniesahlberg at gmail.com
Wed Mar 5 03:54:20 GMT 2008
On Wed, Mar 5, 2008 at 2:18 PM, Michael B Allen <ioplex at gmail.com> wrote:
> On Tue, 04 Mar 2008 20:22:00 -0600
> "Christopher R. Hertel" <crh at ubiqx.mn.org> wrote:
> > >> Don't forget the newest pile of doco: Microsoft has released the
> > >> documentation they wrote for MCPP and WSPP programs.
> > >>
> > >> http://forums.microsoft.com/MSDN/default.aspx?ForumGroupID=573&SiteID=1
> > >>
> > >> Time will tell how much better this doco is relative the previous attempts.
> > >
> > > Yeah, I saw this but I wasn't sure if it was ok to read it. Are there
> > > still conditions attached to this stuff? I'm not just doing OSS anymore. I
> > > have commercial software that I license to people.
> > According to the press release, the only restriction would be patent claims.
> > They even go as far as to say they won't sue over those for non-commercial use.
> > Some of the docs now actually list the relevant patents, which helps.
> > I'll know more soon, but here's an article from The Reg:
> > http://www.theregister.co.uk/2008/02/21/microsoft_goes_open/
> > They gave me a T-shirt that says "Reports of snowballs in hell" on the back.
> > (No, really.)
> Have you looked at these docs? If so, let's do a little test. Below
> are three things that I'd like to know. If you're up to it, see if you
> can find them.
> 1) Regarding the SPNEGO protocol, the initiator sends a NegTokenInit
> and the acceptor sends a NegTokenResp. But the SMB_COM_NEGOTIATE
> response deviates from this behavior in that it sends NegTokenInit but
> it's the acceptor. The subsequent SMB_COM_SESSION_SETUP_ANDX resumes
> normal behavior and sends a NegTokenInit. Is there any mention of this
> SMB specific oddity in the new docs?
> 2) DFS clients check the authority component of a UNC to determine if
> it's a domain or a server so that if it's a domain it knows to do a
> referral and initiate DFS resolution. That check is a simple lookup in
> what is called the "trusted domains cache" or "SPC cache". Is there
> anything in the new docs about how DFS clients retrieve this list of
> trusted domains?
> 3) There is a connectionless (UDP) LDAP request for the netlogon
> attribute of the RootDSE that MSDN documentation refers to only as a
> "CLDAP ping". Much like a corresponding mailslot request, it is used
> to retrieve basic but very important information about a domain
> controller including it's DNS domain name, NetBIOS domain name and
> GUID. There appears to be at least 4 levels of information that can be
> retrieved controlled by an NtVer attribute in the filter. In these new
> MS docs, is there any mention of the binary blob of data returned in
> this very common CLDAP netlogon attribute query?
For 3, see MS-ADTS section 7.3.3 in the public docs.
More information about the samba-technical