Hi,guys .
I implement HTTP Proxy running in Linux environment and my proxy have
to support NTLM authentication.
My proxy written in C++.
I try to use _squid-ntlm helper _according to
*http://devel.squid-cache.org/ntlm/squid_helper_protocol.html .
So *I run helper like this *system ("ntlm_auth -d=10
--helper-protocol=squid-2.5-ntlmssp"*);
and implemented its protocol (see *Appendix A*)
But it return me *NTLMSSP NT_STATUS_UNSUCCESSFUL*. From the other side
if I run helper like this:
*system ("ntlm_auth -d=10 --password=1
--helper-protocol=squid-2.5-ntlmssp"*); then everything is OK.
But I am not able to run helper with all users passwords(I don't know
them and I am sure that it is not really required).
So where the hell I am wrong ?
*
BTW
*The command */opt/samba/bin/wbinfo -t *cause to following output
*checking the trust secret via RPC calls succeeded.
*The command */opt/samba/sbin/smbd -V *cause to following output
*Version 3.3.4
Please help me !!!
*
Thanks in advance,Arkady
*Appendix A. Problematic helper's dump conversation.*
[2010/03/15 10:35:48, 10] utils/ntlm_auth.c:manage_squid_request(1609)
Got 'YR
TlRMTVNTUAABAAAAB7IIogcABwAyAAAACgAKACgAAAAFAs4OAAAAD0tBTEVWRVQtRE5LQUxFVkVU'
from squid (length: 79).
[2010/03/15 10:35:48, 10]
utils/ntlm_auth.c:manage_squid_ntlmssp_request(587)
got NTLMSSP packet:
[2010/03/15 10:35:48, 10] lib/util.c:dump_data(1899)
[000] 4E 54 4C 4D 53 53 50 00 01 00 00 00 07 B2 08 A2 NTLMSSP. .....?.?
[010] 07 00 07 00 32 00 00 00 0A 00 0A 00 28 00 00 00 ....2... ....(...
[020] 05 02 CE 0E 00 00 00 0F 4B 41 4C 45 56 45 54 2D ..?..... KALEVET-
[030] 44 4E 4B 41 4C 45 56 45 54 DNKALEVE T
[2010/03/15 10:35:48, 3] libsmb/ntlmssp.c:debug_ntlmssp_flags(62)
Got NTLMSSP neg_flags=0xa208b207
NTLMSSP_NEGOTIATE_UNICODE
NTLMSSP_NEGOTIATE_OEM
NTLMSSP_REQUEST_TARGET
NTLMSSP_NEGOTIATE_NTLM
NTLMSSP_NEGOTIATE_DOMAIN_SUPPLIED
NTLMSSP_NEGOTIATE_WORKSTATION_SUPPLIED
NTLMSSP_NEGOTIATE_ALWAYS_SIGN
NTLMSSP_NEGOTIATE_NTLM2
NTLMSSP_NEGOTIATE_128
[2010/03/15 10:35:48, 0] utils/ntlm_auth.c:get_winbind_domain(140)
could not obtain winbind domain name!
[2010/03/15 10:35:48, 0] utils/ntlm_auth.c:get_winbind_netbios_name(166)
could not obtain winbind netbios name!
[2010/03/15 10:35:48, 10]
utils/ntlm_auth.c:manage_squid_ntlmssp_request(597)
NTLMSSP challenge
TlRMTVNTUAACAAAADgAOADAAAAAVgokgL2eiMJNYeuYAAAAAAAAAAGAAYAA+AAAASwBBAEwARQBWAEUAVAACAA4ASwBBAEwARQBWAEUAVAABAAgAQwBIAEkAUAAEABYAawBhAGwAZQB2AGUAdAAuAGMAbwBtAAMAIABjAGgAaQBwAC4AawBhAGwAZQB2AGUAdAAuAGMAbwBtAAAAAAA=
[2010/03/15 10:35:48, 10] utils/ntlm_auth.c:manage_squid_request(1609)
Got 'KK
TlRMTVNTUAADAAAAGAAYAHIAAAAYABgAigAAAA4ADgBIAAAACAAIAFYAAAAUABQAXgAAAAAAAACiAAAABYKIIgUCzg4AAAAPSwBBAEwARQBWAEUAVABhAG0AaQB0AEsAQQBMAEUAVgBFAFQALQBEAE4ACQNPBMBlv8QAAAAAAAAAAAAAAAAAAAAAaTvRsVmqxL1G+Dc3tL5PgP+OzU8vBxW9'
from squid (length: 219).
[2010/03/15 10:35:48, 10]
utils/ntlm_auth.c:manage_squid_ntlmssp_request(587)
got NTLMSSP packet:
[2010/03/15 10:35:48, 10] lib/util.c:dump_data(1899)
[000] 4E 54 4C 4D 53 53 50 00 03 00 00 00 18 00 18 00 NTLMSSP. ........
[010] 72 00 00 00 18 00 18 00 8A 00 00 00 0E 00 0E 00 r....... ........
[020] 48 00 00 00 08 00 08 00 56 00 00 00 14 00 14 00 H....... V.......
[030] 5E 00 00 00 00 00 00 00 A2 00 00 00 05 82 88 22 ^....... ?......"
[040] 05 02 CE 0E 00 00 00 0F 4B 00 41 00 4C 00 45 00 ..?..... K.A.L.E.
[050] 56 00 45 00 54 00 61 00 6D 00 69 00 74 00 4B 00 V.E.T.a. m.i.t.K.
[060] 41 00 4C 00 45 00 56 00 45 00 54 00 2D 00 44 00 A.L.E.V. E.T.-.D.
[070] 4E 00 09 03 4F 04 C0 65 BF C4 00 00 00 00 00 00 N...O.?e ??......
[080] 00 00 00 00 00 00 00 00 00 00 69 3B D1 B1 59 AA ........ ..i;?Y?
[090] C4 BD 46 F8 37 37 B4 BE 4F 80 FF 8E CD 4F 2F 07 L(F?77?? O.?.?O/.
[0A0] 15 BD .?
[2010/03/15 10:35:48, 3] libsmb/ntlmssp.c:ntlmssp_server_auth(615)
Got user=[amit] domain=[KALEVET] workstation=[KALEVET-DN] len1=24 len2=24
[2010/03/15 10:35:48, 3] utils/ntlm_auth.c:winbind_pw_check(427)
* Login for user [kalevet]\[am...@[kalevet-dn] failed due to [Reading
winbind reply failed!]
[2010/03/15 10:35:48, 10]
utils/ntlm_auth.c:manage_squid_ntlmssp_request(605)
NTLMSSP NT_STATUS_UNSUCCESSFUL*
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
