external authentication

[Andrew Bartlett]

Marbacher Christophe wrote:
> 
> Hi,
> 
> What does go on the line between the client and the server? Is it a hashed
> password (no way to get the clear password) or is it an encrypted password?
> If it's an encrypted password, then it would be possible to decrypt it and
> give this password to another application to authenticate (like radius for
> example).
> 
> What is the way the password transit on the wire? Are we able to retrieve it
> in clear on server side?

NO.  SMB uses challange-response authenticaion.  

Andrew Bartlett

-- 
Andrew Bartlett                                 abartlet at pcug.org.au
Manager, Authentication Subsystems, Samba Team  abartlet at samba.org
Student Network Administrator, Hawker College   abartlet at hawkerc.net
http://samba.org     http://build.samba.org     http://hawkerc.net