cifs client not forgiving enough when neg prot smb1 (with extended security)
Steve French
smfrench at gmail.com
Thu May 28 16:18:17 MDT 2015
Merged into cifs-2.6.git
On Wed, May 27, 2015 at 7:06 AM, Noel Power <nopower at suse.com> wrote:
> Hi Steve,
>
> Just came across a situation where cifs client was failing to mount a
> share with ntlmssp served by cifsd based server.
> The server is misbehaving in that is should have set the
> EncryptionKeyLength to zero (when offering extended security).
> Regardless though, a windows client will happily continue whereas the
> cifs client will return IO(5) error. Looking in the MS-SMB spec
> (2.2.4.5.2.1) mentions
>
> "ChallengeLength (1 byte): When the CAP_EXTENDED_SECURITY bit is set,
> the server MUST set this value to zero and clients MUST ignore this value."
>
> I attach a patch to cifs for this
>
> thanks,
>
> Noel
--
Thanks,
Steve
More information about the samba-technical
mailing list