Make sure we always have some client data, not just the hash. An NTLMv2 or

author Andrew Bartlett <abartlet@samba.org>

Fri, 9 May 2003 09:41:08 +0000 (09:41 +0000)

committer Andrew Bartlett <abartlet@samba.org>

Fri, 9 May 2003 09:41:08 +0000 (09:41 +0000)
author Andrew Bartlett <abartlet@samba.org>
Fri, 9 May 2003 09:41:08 +0000 (09:41 +0000)
committer Andrew Bartlett <abartlet@samba.org>
Fri, 9 May 2003 09:41:08 +0000 (09:41 +0000)
diff --git a/source3/auth/auth_sam.c b/source3/auth/auth_sam.c

index 9a619f81f670969a37eb110934fbdce885de2920..cb88014e98ef44adc23eb396f817a7bbfa26255b 100644 (file)
--- a/source3/auth/auth_sam.c
+++ b/source3/auth/auth_sam.c
@@ -98,9 +98,10 @@ static BOOL smb_pwd_check_ntlmv2(const DATA_BLOB ntv2_response,
                 return False;
         }
  
-       if (ntv2_response.length < 16) {
+       if (ntv2_response.length < 24) {
                 /* We MUST have more than 16 bytes, or the stuff below will go
-                  crazy... */
+                  crazy.  No known implementation sends less than the 24 bytes
+                  for LMv2, let alone NTLMv2. */
                 DEBUG(0, ("smb_pwd_check_ntlmv2: incorrect password length (%d)\n", 
                           ntv2_response.length));
                 return False;
author	Andrew Bartlett <abartlet@samba.org>
	Fri, 9 May 2003 09:41:08 +0000 (09:41 +0000)
committer	Andrew Bartlett <abartlet@samba.org>
	Fri, 9 May 2003 09:41:08 +0000 (09:41 +0000)