cvs commit: src/sys/netsmb smb_conn.c smb_conn.h smb_crypt.c
smb_iod.c smb_rq.c smb_rq.h smb_smb.c smb_subr.h
Tim J. Robbins
tjr at FreeBSD.org
Fri Jan 2 14:38:45 PST 2004
tjr 2004/01/02 14:38:42 PST
FreeBSD src repository
Modified files:
sys/netsmb smb_conn.c smb_conn.h smb_crypt.c
smb_iod.c smb_rq.c smb_rq.h smb_smb.c
smb_subr.h
Log:
Add support for SMB request signing, which prevents "man in the middle"
attacks and is required to connect to Windows 2003 servers in their
default configuration. This adds an extra field to the SMB header
containing the truncated 64-bit MD5 digest of a key (a function of the
user's password and the server's authentication challenge), an implicit
sequence number, and the message data itself. As signing each message
imposes a significant performance penalty, we only enable it if the
server will not let us connect without it; this should eventually become
an option to mount_smbfs.
Revision Changes Path
1.10 +5 -0 src/sys/netsmb/smb_conn.c
1.10 +3 -0 src/sys/netsmb/smb_conn.h
1.7 +192 -1 src/sys/netsmb/smb_crypt.c
1.15 +2 -0 src/sys/netsmb/smb_iod.c
1.14 +20 -4 src/sys/netsmb/smb_rq.c
1.3 +5 -1 src/sys/netsmb/smb_rq.h
1.12 +19 -6 src/sys/netsmb/smb_smb.c
1.11 +3 -0 src/sys/netsmb/smb_subr.h
More information about the cvs-src
mailing list