Are we aware of NEGOEX?
simo
idra at samba.org
Fri Jun 29 13:02:01 MDT 2012
On Thu, 2012-06-28 at 06:44 -0700, Richard Sharpe wrote:
> Hi folks,
>
> In an SMB2 packet capture at Sharkfest I saw a new OID in the SPNEGO stuff.
>
> It turned out to be this:
> http://msdn.microsoft.com/en-us/library/gg567315%28v=PROT.10%29.aspx
>
> The Windows client was only offering NEGOEX and NTLMSSP.
>
> More info here: http://tools.ietf.org/id/draft-zhu-negoex-02.txt and
> here http://msdn.microsoft.com/en-us/library/cc247030%28v=PROT.13%29.aspx
>
> If I get the time soon I might implement a dissector for NEGOEX ...
> which will help with the implementation.
I think both MIT and Heimdal's SPNEGO implementations now support
NEGOEX, I would *really* like to get us to use those implementations
instead of having our own SPNEGO implementation.
We can do that by providing a ntlmssp gssapi plugin to either library.
Simo.
--
Simo Sorce
Samba Team GPL Compliance Officer <simo at samba.org>
Principal Software Engineer at Red Hat, Inc. <simo at redhat.com>
More information about the samba-technical
mailing list