samba-technical@lists.samba.org
[Top] [All Lists]

Re: Security impact of removing timestamp check in rd_rep()

Subject: Re: Security impact of removing timestamp check in rd_rep()
From: Luke Howard
Date: Mon, 16 May 2005 14:10:50 +1000
>I think the sequence number is used for this.  It appears from the way
>Microsoft implements their server, that they don't check the timestamps.
>
>Now to figure out how to tell the krb5 layer that this is a DCE_STYLE
>third leg...

The acceptor should be able to tell from the flags in the 0x8003 checksum.

-- Luke

--

<Prev in Thread] Current Thread [Next in Thread>