Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Fix netlogon implementation #1848

Open
wants to merge 2 commits into
base: master
Choose a base branch
from

Conversation

ThePirateWhoSmellsOfSunflowers
Copy link
Contributor

Hi.

Minor fixes within NETLOGON implementation:

  • If AES is set for signing, function uses the right structure: NL_AUTH_SHA2_SIGNATURE
  • NL_AUTH_SHA2_SIGNATURE is now more MS-NRPC "compliant": Reserved bytes are no longer part of the signature (see 2.2.1.3.3)
  • New function ComputeNetlogonAuthenticatorAES: compute a AES authenticator, based on ComputeNetlogonAuthenticator
  • Fix bug when INTEGRITY is set: confounder is b'' but it is compared with '' (which returns False). This PR fixes it.

🌻

@anadrianmanrique anadrianmanrique added the in review This issue or pull request is being analyzed label Nov 20, 2024
@ThePirateWhoSmellsOfSunflowers
Copy link
Contributor Author

I added a method to switch to AES for secure channel. It only affects NETLOGON when it is used as SSP.
Default value is False to keep retro compatibility with older scripts.

🌻

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
in review This issue or pull request is being analyzed
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants