Regarding AUTH_CRAP and NTLMv2
Narendra Kumar S.S
ssnkumar at gmail.com
Mon Jan 17 04:32:50 MST 2011
On Mon, Jan 17, 2011 at 4:51 PM, Andrew Bartlett <abartlet at samba.org> wrote:
> On Mon, 2011-01-17 at 16:48 +0530, Narendra Kumar S.S wrote:
> > Hi Andrew,
> >
> >
> > Thanks very much for the quick response.
> > So, that explains why the AUTH_CRAP with NTLMv2 response is
> > failing!
> >
> >
> > So, is there any way to overcome this?
>
> The best way is to simply hold the full password database on your MITM
> device. ie, run Samba4 and replicate in the passwords.
>
I cannot get hold of the password database.
So, this is ruled out.
>
> It may be possible to bypass the restriction by being a trusted domain,
> rather than a member server. I've not tried this however.
>
Any idea on how to add it as a trusted domain
>
> > Or is it possible to change the computer name hidden in the nt
> > response?
>
> No, the response includes this value in the checksum.
>
If it is possible to change the computer name, I can recalculate the
checksum and overwrite the original sum.
So, is it possible to change the computer name at all?
>
> > Or will this work, if I have a delegated user?
>
> I'm not sure what you mean exactly.
>
In Windows 2003 server, an user can be made as a delegated user.
But, since the computer name is involved and not the particular user, this
change will not help.
I quickly tried this and it failed.
-Narendra
>
> Andrew Bartlett
>
> --
> Andrew Bartlett http://samba.org/~abartlet/
> Authentication Developer, Samba Team http://samba.org
> Samba Developer, Cisco Inc.
>
>
More information about the samba-technical
mailing list