Re: [Freerdp-devel] Network Level Authentication Support - Testing

Tue, 25 Jan 2011 11:01:57 -0800 

I forgot to mention, I have two other items on my list:

1) Perform verification of received encrypted public key echo (required for
real security)
2) Free resources following the authentication

Keep that in mind for comments on the code at this time

On Tue, Jan 25, 2011 at 4:01 AM, Marc-André Moreau <
marcandre.mor...@gmail.com> wrote:

> Hi FreeRDP developers,
>
> I have some good news to bring: I just got network level authentication to
> work. Now, I would like to get people to test it out so that we can uncover
> issues that I would have missed in my development environment. It should
> normally work, but we never know. Just download compile the latest version
> on the NLA branch:
>
>
> http://freerdp.git.sourceforge.net/git/gitweb.cgi?p=freerdp/freerdp.git;a=shortlog;h=refs/heads/nla
>
> I still have to do some cleanup regarding the negotiation of the encryption
> (Standard RDP, TLS, TLS + NLA) but if the server is configured to allow NLA
> it should work. Feedback on the implementation would be appreciated as well.
> I have separated CredSSP from NTLMSSP, like in the original architecture
> from Microsoft. CredSSP needs to know some things from NTLMSSP, but those
> are actually documented in MS-CSSP. If one wants to implement Kerberos
> authentication (MS-KILE) later on, it could be implemented right under
> CredSSP as a replacement of NTLMSSP. The version of NTLM authentication
> which I have implemented is NTLMv2. NTLM authentication has existed for much
> longer than NLA, so I would doubt that even the earliest versions of the RDP
> server with NLA support used something older than NTLMv2 (such as NTLMv1
> with Extended Session Security, or NTLMv1). I'd still like to confirm that
> though.
>
> Best Regards,
> - Marc-Andre
>

------------------------------------------------------------------------------
Special Offer-- Download ArcSight Logger for FREE (a $49 USD value)!
Finally, a world-class log management solution at an even better price-free!
Download using promo code Free_Logger_4_Dev2Dev. Offer expires 
February 28th, so secure your free ArcSight Logger TODAY! 
http://p.sf.net/sfu/arcsight-sfd2d
_______________________________________________
Freerdp-devel mailing list
Freerdp-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/freerdp-devel

Reply via email to