svn commit: samba r21991 - in branches/SAMBA_3_0/source:
include lib libsmb smbd
Andrew Bartlett
abartlet at samba.org
Thu Mar 29 21:20:30 GMT 2007
On Thu, 2007-03-29 at 09:41 -0700, Jeremy Allison wrote:
> On Thu, Mar 29, 2007 at 05:47:52PM +1000, Andrew Bartlett wrote:
>
> > BTW, I really, really would prefer if the NTLMSSP signature was in front
> > of the packet. This would match what NTLM and GSS-SPNEGO(ntlm) does in
> > all other protocols, and therefore what a SASL or GSSAPI library would
> > naturally do in another implementation.
>
> Singature first doesn't match the signature in the RPC encrypted transport.
> In that transport the signature is put at the end, pointed to by the
> RPC header.
Yeah, but this isn't RPC.
> Do you have an example of GSS-SPNEGO negotiated NTLM from Microsoft's
> SSPI showing where the signature goes ? I'd change it to be compatible
> on the wire with SSPI transport, if there's a spec for it with NTLM ?
You should be able to see this in NTLMSSP encrypted LDAP.
Andrew Bartlett
--
Andrew Bartlett http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Samba Developer, Red Hat Inc. http://redhat.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba-technical/attachments/20070330/5d3c4ec5/attachment.bin
More information about the samba-technical
mailing list