git.samba.org
/
samba.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(parent:
376b8d5
)
Make sure we always have some client data, not just the hash. An NTLMv2 or
author
Andrew Bartlett
<abartlet@samba.org>
Fri, 9 May 2003 09:41:08 +0000
(09:41 +0000)
committer
Andrew Bartlett
<abartlet@samba.org>
Fri, 9 May 2003 09:41:08 +0000
(09:41 +0000)
LMv2 response less than 24 bytes is just silly.
Andrew Bartlett
(This used to be commit
b4ecdb2e582376d2713f81e8e32a668014905d70
)
source3/auth/auth_sam.c
patch
|
blob
|
history
diff --git
a/source3/auth/auth_sam.c
b/source3/auth/auth_sam.c
index 9a619f81f670969a37eb110934fbdce885de2920..cb88014e98ef44adc23eb396f817a7bbfa26255b 100644
(file)
--- a/
source3/auth/auth_sam.c
+++ b/
source3/auth/auth_sam.c
@@
-98,9
+98,10
@@
static BOOL smb_pwd_check_ntlmv2(const DATA_BLOB ntv2_response,
return False;
}
- if (ntv2_response.length <
16
) {
+ if (ntv2_response.length <
24
) {
/* We MUST have more than 16 bytes, or the stuff below will go
- crazy... */
+ crazy. No known implementation sends less than the 24 bytes
+ for LMv2, let alone NTLMv2. */
DEBUG(0, ("smb_pwd_check_ntlmv2: incorrect password length (%d)\n",
ntv2_response.length));
return False;