ADV190023 | LDAP channel binding support
Isaac Boukris
iboukris at gmail.com
Wed Feb 26 19:52:20 UTC 2020
And this is net-ads failure, same bindings, different flags (and
delegated creds).
authenticator
authenticator-vno: 5
crealm: SMB.NET
cname
cksum
cksumtype: cKSUMTYPE-GSSAPI (32771)
checksum:
100000009e41a51ed7c90b3597bc7217c4d3c41e0f81000001009705768205933082058f…
Length: 16
Bnd: 9e41a51ed7c90b3597bc7217c4d3c41e
.... .... .... .... ...0 .... .... .... = DCE-style: Not using DCE-STYLE
.... .... .... .... .... .... ..0. .... = Integ: Do NOT use
integrity protection
.... .... .... .... .... .... ...0 .... = Conf: Do NOT use
Confidentiality (sealing)
.... .... .... .... .... .... .... 1... = Sequence: Enable
Out-of-sequence detection for sign or sealed messages
.... .... .... .... .... .... .... .1.. = Replay: Enable
replay protection for signed or sealed messages
.... .... .... .... .... .... .... ..1. = Mutual: Request that
remote peer authenticates itself
.... .... .... .... .... .... .... ...1 = Deleg: Delegate
credentials to remote peer
DlgOpt: 1
DlgLen: 1431
krb-cred
pvno: 5
msg-type: krb-cred (22)
tickets: 1 item
Ticket
tkt-vno: 5
realm: SMB.NET
sname
enc-part
enc-part
cusec: 828
ctime: 2020-02-26 18:29:54 (UTC)
subkey
keytype: 18
keyvalue:
f87166f8c694f492623f05c37c251a5b24daba82d756c76dc6a2147e80969ba3
seq-number: 1042541160
More information about the samba-technical
mailing list