Re: Challenge in NTLM authenticator

From: Guido Serassio <serassio@dont-contact.us>
Date: Sun, 21 Apr 2002 09:17:18 +0200

Hi Henrik,

Il 14.12 20/04/2002 Henrik Nordstrom ha scritto:
>Yes.
>
>See the ntlm_smbpasswd helper.. (ignore the NTLMv2 things for now).
>
>http://devel.squid-cache.org/cgi-bin/diff/ntlm_smbpasswd
>
>But you really should be using the Windows Security Support Provider
>Interface I think.. you might need to go back to an older copy of
>MSDN to find the NTLM relevant documentation.. (nowdays mostly talks
>a bout Kerberos).
>
>http://msdn.microsoft.com/library/en-us/security/security/sspi_options_for_distributed_applications.asp
>
>http://msdn.microsoft.com/library/default.asp?url=/library/en-us/security/security/sample_sspi_code.asp
>
>Regards
>Henrik

Thanks,

Using fake_auth, ntlm_auth and Q180548 from MS Knowledge Base as templates,
I have now a first version of a working native NT SSP based NTLM
authenticator. It's my intent to release a code compatible with Cygwin too.

At this time the challenge is generated randomly like fake_auth, I'm
investigating if there is some other method like that in ntlm_auth.

Regards

Guido

>On Saturday 20 April 2002 12:09, Guido Serassio wrote:
> > Hi Robert,
> >
> > I'm working on a native NT NTLM Authenticator.
> > I don't understand what is the correct response (TT) to the YR
> > request from Squid, can I generate a random Challenge here ?
> >
> > Thanks
> >
> > Guido
> >
> >
> >
> > -
> > =======================================================
> > Serassio Guido
> > Via Albenga, 11/4 10134 -
> > Torino - ITALY E-mail: guido.serassio@serassio.it
> > WWW: http://www.serassio.it

-
=======================================================
Serassio Guido
Via Albenga, 11/4 10134 - Torino - ITALY
E-mail: guido.serassio@serassio.it
WWW: http://www.serassio.it
Received on Sun Apr 21 2002 - 01:17:56 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:15:16 MST