Max SMB signing key length
Andrew Bartlett
abartlet at samba.org
Thu Mar 18 14:47:04 MDT 2010
On Thu, 2010-03-18 at 18:03 +0100, Stefan (metze) Metzmacher wrote:
> Hi Andrew,
>
> do you know what the maximum length of the SMB signing key could be?
>
> I know with extended security (NTLMSSP 16 bytes or krb5 8-32 bytes)
> it's easy.
>
> But without extended security we calculate the signing key
> out of the user_session_key and the nt or lm response blob.
> I assume the user_session_key is always 16 byte, but what is the max
> size of the response blob?
There isn't really one. It's as big as the NTLMv2 response can get
(which includes user and domain names etc).
Andrew Bartlett
--
Andrew Bartlett http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Samba Developer, Cisco Inc.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 190 bytes
Desc: This is a digitally signed message part
URL: <http://lists.samba.org/pipermail/samba-technical/attachments/20100319/e2d4aaa6/attachment.pgp>
More information about the samba-technical
mailing list