[Samba] ntlm helper helper usage problem

Arkady arkadys at pineapp.com
Mon Mar 15 03:14:26 MDT 2010


Hi,guys .
I implement HTTP Proxy running in Linux environment  and my proxy have 
to support NTLM authentication.
My proxy written in C++.

I try to use _squid-ntlm helper _according to 
*http://devel.squid-cache.org/ntlm/squid_helper_protocol.html .
So *I run helper like this     *system ("ntlm_auth -d=10 
--helper-protocol=squid-2.5-ntlmssp"*);
and implemented its protocol (see *Appendix A*)

But it return me *NTLMSSP NT_STATUS_UNSUCCESSFUL*. From the other side 
if I run helper like this:
 *system ("ntlm_auth -d=10 --password=1 
--helper-protocol=squid-2.5-ntlmssp"*);  then everything is OK.
But I am not able to run helper with all users passwords(I don't know 
them and I am sure that it is not really required).
So where the hell I am wrong ?
*
BTW

*The command  */opt/samba/bin/wbinfo -t *cause to following output

*checking the trust secret via RPC calls succeeded.

*The command  */opt/samba/sbin/smbd -V *cause to following output

*Version 3.3.4

Please help me !!!
*
Thanks in advance,Arkady

*Appendix A. Problematic helper's dump conversation.*

[2010/03/15 10:35:48, 10] utils/ntlm_auth.c:manage_squid_request(1609)
  Got 'YR 
TlRMTVNTUAABAAAAB7IIogcABwAyAAAACgAKACgAAAAFAs4OAAAAD0tBTEVWRVQtRE5LQUxFVkVU' 
from squid (length: 79).
[2010/03/15 10:35:48, 10] 
utils/ntlm_auth.c:manage_squid_ntlmssp_request(587)
  got NTLMSSP packet:
[2010/03/15 10:35:48, 10] lib/util.c:dump_data(1899)
  [000] 4E 54 4C 4D 53 53 50 00  01 00 00 00 07 B2 08 A2  NTLMSSP. .....?.?
  [010] 07 00 07 00 32 00 00 00  0A 00 0A 00 28 00 00 00  ....2... ....(...
  [020] 05 02 CE 0E 00 00 00 0F  4B 41 4C 45 56 45 54 2D  ..?..... KALEVET-
  [030] 44 4E 4B 41 4C 45 56 45  54                       DNKALEVE T
[2010/03/15 10:35:48, 3] libsmb/ntlmssp.c:debug_ntlmssp_flags(62)
  Got NTLMSSP neg_flags=0xa208b207
    NTLMSSP_NEGOTIATE_UNICODE
    NTLMSSP_NEGOTIATE_OEM
    NTLMSSP_REQUEST_TARGET
    NTLMSSP_NEGOTIATE_NTLM
    NTLMSSP_NEGOTIATE_DOMAIN_SUPPLIED
    NTLMSSP_NEGOTIATE_WORKSTATION_SUPPLIED
    NTLMSSP_NEGOTIATE_ALWAYS_SIGN
    NTLMSSP_NEGOTIATE_NTLM2
    NTLMSSP_NEGOTIATE_128
[2010/03/15 10:35:48, 0] utils/ntlm_auth.c:get_winbind_domain(140)
  could not obtain winbind domain name!
[2010/03/15 10:35:48, 0] utils/ntlm_auth.c:get_winbind_netbios_name(166)
  could not obtain winbind netbios name!
[2010/03/15 10:35:48, 10] 
utils/ntlm_auth.c:manage_squid_ntlmssp_request(597)
  NTLMSSP challenge

TlRMTVNTUAACAAAADgAOADAAAAAVgokgL2eiMJNYeuYAAAAAAAAAAGAAYAA+AAAASwBBAEwARQBWAEUAVAACAA4ASwBBAEwARQBWAEUAVAABAAgAQwBIAEkAUAAEABYAawBhAGwAZQB2AGUAdAAuAGMAbwBtAAMAIABjAGgAaQBwAC4AawBhAGwAZQB2AGUAdAAuAGMAbwBtAAAAAAA=

[2010/03/15 10:35:48, 10] utils/ntlm_auth.c:manage_squid_request(1609)
  Got 'KK  
TlRMTVNTUAADAAAAGAAYAHIAAAAYABgAigAAAA4ADgBIAAAACAAIAFYAAAAUABQAXgAAAAAAAACiAAAABYKIIgUCzg4AAAAPSwBBAEwARQBWAEUAVABhAG0AaQB0AEsAQQBMAEUAVgBFAFQALQBEAE4ACQNPBMBlv8QAAAAAAAAAAAAAAAAAAAAAaTvRsVmqxL1G+Dc3tL5PgP+OzU8vBxW9' 
from squid (length: 219).
[2010/03/15 10:35:48, 10] 
utils/ntlm_auth.c:manage_squid_ntlmssp_request(587)
  got NTLMSSP packet:
[2010/03/15 10:35:48, 10] lib/util.c:dump_data(1899)
  [000] 4E 54 4C 4D 53 53 50 00  03 00 00 00 18 00 18 00  NTLMSSP. ........
  [010] 72 00 00 00 18 00 18 00  8A 00 00 00 0E 00 0E 00  r....... ........
  [020] 48 00 00 00 08 00 08 00  56 00 00 00 14 00 14 00  H....... V.......
  [030] 5E 00 00 00 00 00 00 00  A2 00 00 00 05 82 88 22  ^....... ?......"
  [040] 05 02 CE 0E 00 00 00 0F  4B 00 41 00 4C 00 45 00  ..?..... K.A.L.E.
  [050] 56 00 45 00 54 00 61 00  6D 00 69 00 74 00 4B 00  V.E.T.a. m.i.t.K.
  [060] 41 00 4C 00 45 00 56 00  45 00 54 00 2D 00 44 00  A.L.E.V. E.T.-.D.
  [070] 4E 00 09 03 4F 04 C0 65  BF C4 00 00 00 00 00 00  N...O.?e ??......
  [080] 00 00 00 00 00 00 00 00  00 00 69 3B D1 B1 59 AA  ........ ..i;?Y?
  [090] C4 BD 46 F8 37 37 B4 BE  4F 80 FF 8E CD 4F 2F 07  L(F?77?? O.?.?O/.
  [0A0] 15 BD                                             .?
[2010/03/15 10:35:48, 3] libsmb/ntlmssp.c:ntlmssp_server_auth(615)
  Got user=[amit] domain=[KALEVET] workstation=[KALEVET-DN] len1=24 len2=24
[2010/03/15 10:35:48, 3] utils/ntlm_auth.c:winbind_pw_check(427)
 * Login for user [KALEVET]\[amit]@[KALEVET-DN] failed due to [Reading 
winbind reply failed!]
[2010/03/15 10:35:48, 10] 
utils/ntlm_auth.c:manage_squid_ntlmssp_request(605)
  NTLMSSP NT_STATUS_UNSUCCESSFUL*





 



More information about the samba mailing list