diff options
| author | Jeremy Allison <jra@samba.org> | 1998-04-23 22:59:19 +0000 |
|---|---|---|
| committer | Jeremy Allison <jra@samba.org> | 1998-04-23 22:59:19 +0000 |
| commit | 30675f81f60bab24f47758baab8316d4467709ef (patch) | |
| tree | d65307f62b3b061e717188662dc91d3863dd1704 /source3/rpc_parse/parse_net.c | |
| parent | d5114f624591c55a75d86a1efec3378fd4c9ef5a (diff) | |
| download | samba-30675f81f60bab24f47758baab8316d4467709ef.tar.gz samba-30675f81f60bab24f47758baab8316d4467709ef.tar.bz2 samba-30675f81f60bab24f47758baab8316d4467709ef.zip | |
Makefile: Added nterr.c into the mix.
clientgen.c: Added nt_error as an entry in the struct client_state.
password.c: Open the netlogon pipe.
smb.h: Added nt_error as an entry in the struct client_state.
lib/rpc/parse/parse_net.c: Added comments on net logon.
lib/rpc/server/srv_netlog.c: Added comments on net logon.
Jeremy.
(This used to be commit 899a9f0dce50c73e03c8da2ebe920957491c8ad7)
Diffstat (limited to 'source3/rpc_parse/parse_net.c')
| -rw-r--r-- | source3/rpc_parse/parse_net.c | 22 |
1 files changed, 22 insertions, 0 deletions
diff --git a/source3/rpc_parse/parse_net.c b/source3/rpc_parse/parse_net.c index 529cd37105..c5dd23a00e 100644 --- a/source3/rpc_parse/parse_net.c +++ b/source3/rpc_parse/parse_net.c @@ -569,7 +569,17 @@ static int make_dom_sid2s(char *sids_str, DOM_SID2 *sids, int max_sids) /******************************************************************* makes a NET_ID_INFO_1 structure. + +This is an interactive logon packet. The log_id parameters +are what an NT server would generate for LUID once the +user is logged on. I don't think we care about them. + +Note that this passes the actual NT and LM hashed passwords +over the secure channel. This is not the preferred logon +method from a Samba domain client as it exposes the password +hashes to anyone who has compromised the secure channel. JRA. ********************************************************************/ + void make_id_info1(NET_ID_INFO_1 *id, char *domain_name, uint32 param_ctrl, uint32 log_id_low, uint32 log_id_high, char *user_name, char *wksta_name, @@ -671,7 +681,19 @@ void net_io_id_info1(char *desc, NET_ID_INFO_1 *id, prs_struct *ps, int depth) /******************************************************************* makes a NET_ID_INFO_2 structure. + +This is a network logon packet. The log_id parameters +are what an NT server would generate for LUID once the +user is logged on. I don't think we care about them. + +Note that this has no access to the NT and LM hashed passwords, +so it forwards the challenge, and the NT and LM responses (24 +bytes each) over the secure channel to the Domain controller +for it to say yea or nay. This is the preferred method of +checking for a logon as it doesn't export the password +hashes to anyone who has compromised the secure channel. JRA. ********************************************************************/ + void make_id_info2(NET_ID_INFO_2 *id, char *domain_name, uint32 param_ctrl, uint32 log_id_low, uint32 log_id_high, char *user_name, char *wksta_name, |