[prev in list] [next in list] [prev in thread] [next in thread] 

List:       freeradius-users
Subject:    Re: EAP and NTLM support (fwd)
From:       Phil Mayers <p.mayers () imperial ! ac ! uk>
Date:       2010-11-24 19:15:08
Message-ID: 4CED643C.8020506 () imperial ! ac ! uk
[Download RAW message or body]

On 11/24/2010 06:10 PM, JR Mayberry wrote:
>
> http://technet.microsoft.com/en-us/library/dd560653(WS.10).aspx
>
> microsoft appears to be making steps to kill NTLM as it isn't secure

It is important to distinguish between NTLM-the-wire-protocol, and 
ntlm_auth, the Samba helper binary, which actually calls a NetLogon RPC 
function call over an schannel-protected pipe (which may for example be 
encrypted using the Kerberos trust relationship between the Samba server 
and the domain controller)

The former may (eventually) be deprecated, but 
FreeRadius/Samba/ntlm_auth don't use it.

The latter is not going anywhere, I feel sure.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
[prev in list] [next in list] [prev in thread] [next in thread]