| Ticket UUID: | 1557494 | |||
| Title: | NTLM responses ignores negotiated encoding | |||
| Type: | Bug | Version: | None | |
| Submitter: | mpc_janssen | Created on: | 2006-09-12 21:44:38 | |
| Subsystem: | sasl | Assigned To: | patthoyts | |
| Priority: | 5 Medium | Severity: | ||
| Status: | Closed | Last Modified: | 2006-09-14 19:07:44 | |
| Resolution: | Accepted | Closed By: | patthoyts | |
| Closed on: | 2006-09-14 12:07:44 | |||
| Description: |
The procedure SASL::NTLM::CreateResponse will always sent the domain, host and user in litte endian unicode when creating the type 3 message. This is incorrect if the server has indicated in the type 2 message that Unicode is not supported. If the flag Unicode is not set OEM encoding should be used instead. I have noticed this issue on a Windows NTLM authenticating proxy and am in the position to do some additional testing, I will see if I can create a patch for this issue on short notice. | |||
| User Comments: |
patthoyts added on 2006-09-14 19:07:44:
Logged In: YES user_id=202636 Applied patches plus a little reconfiguring. Tests ok on my unicode using systems. mpc_janssen added on 2006-09-13 19:29:36: File Added - 193343: ntlm.test.patch Logged In: YES user_id=1463011 Test SASL-NTLM-1.1 now fails because of additional changes in the way of including the flags and session keys fields in the type-3 message. Attached a patch on the ntml.test file. mpc_janssen added on 2006-09-13 18:49:31: File Added - 193325: ntlm.patch Logged In: YES user_id=1463011 Attached patch allows me to successfully bypass our corperate proxy server. Via: 1.1 hostname (NetCache NetApp/6.0.2P2D2) | |||
Home
Blog
Docs
Downloads
Tickets
Timeline
Branches
Tags
Wiki