Tk Library Source Code

View Ticket
Login
Ticket UUID: 1557494
Title: NTLM responses ignores negotiated encoding
Type: Bug Version: None
Submitter: mpc_janssen Created on: 2006-09-12 21:44:38
Subsystem: sasl Assigned To: patthoyts
Priority: 5 Medium Severity:
Status: Closed Last Modified: 2006-09-14 19:07:44
Resolution: Accepted Closed By: patthoyts
    Closed on: 2006-09-14 12:07:44
Description:
The procedure SASL::NTLM::CreateResponse will always 
sent the domain, host and user in litte endian unicode 
when creating the type 3 message. This is incorrect if 
the server has indicated in the type 2 message that 
Unicode is not supported.

If the flag Unicode is not set OEM encoding should be 
used instead.

I have noticed this issue on a Windows NTLM 
authenticating proxy and am in the position to do some 
additional testing, I will see if I can create a patch 
for this issue on short notice.
User Comments: patthoyts added on 2006-09-14 19:07:44:
Logged In: YES 
user_id=202636

Applied patches plus a little reconfiguring. Tests ok on my
unicode using systems.

mpc_janssen added on 2006-09-13 19:29:36:

File Added - 193343: ntlm.test.patch

Logged In: YES 
user_id=1463011

Test SASL-NTLM-1.1 now fails because of additional changes
in the way of including the flags and session keys fields in
the type-3 message.
Attached a patch on the ntml.test file.

mpc_janssen added on 2006-09-13 18:49:31:

File Added - 193325: ntlm.patch

Logged In: YES 
user_id=1463011

Attached patch allows me to successfully bypass our
corperate proxy server. Via: 1.1 hostname (NetCache
NetApp/6.0.2P2D2)

Attachments: