Fwd: Re: smbencrypt calculates false hash for German umlauts and other non-ASCII letters

Matthias Nagel matthias.h.nagel at gmail.com
Sat Sep 7 19:14:25 CEST 2013 

Sorry, my mail program tricked me and used the wrong destination address.

----------  Weitergeleitete Nachricht  ----------

Betreff: Re: smbencrypt calculates false hash for German umlauts and	other non-ASCII letters
Datum: Samstag 07 September 2013, 19:13:17
Von: Matthias Nagel <matthias.h.nagel at gmail.com>
An: Alan DeKok <aland at deployingradius.com>

Hello everybody,

as it was me who came up with the issue.

The password must be encoded as UTF-16 in little endian and then the MD4 is calculated.

For example: Assume one uses "smbencrypt" from command line interface in order to calculate the hash. The linux console is set up to use "en-US.utf8". Then, at first a character encoding into UTF-16 little endian is necessary, and in a second step the MD4 hash can be calculated.

Matthias

Am Samstag 07 September 2013, 12:10:38 schrieben Sie:
> Arran Cudbard-Bell wrote:
> > Can't we assume src as UTF8 for NAI (RFC4282)?
> 
>   Ha, ha, ha, ha  <cough>.  4282 is wrong.  And no one implements any of it.
> 
>   The MS-CHAP RFCs are silent on the subject of character encoding.  The
> unofficial word from Microsoft is "MS-CHAP uses the local encoding".
> 
>   Ok... what's that?
> 
>   <hysterical laughter>  No one knows.  And there's no way to find out.
> 
>   And UTF-8 uses up to 5 octets for a character.  MS-CHAP requires no
> more than 2.
> 
>   There is *no* way to do the right thing.  You can get close.
> Sometimes.  Maybe.  But doing the right thing always?  Impossible.
> 
>   Alan DeKok.
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
----------------------------------------------------------------------
Matthias Nagel
Parkstraße 27
76131 Karlsruhe

Mobil: +49-151-15998774
e-Mail: matthias.h.nagel at gmail.com
ICQ: 499797758
Skype: nagmat84
-------------------------------------------------------------
----------------------------------------------------------------------
Matthias Nagel
Parkstraße 27
76131 Karlsruhe

Mobil: +49-151-15998774
e-Mail: matthias.h.nagel at gmail.com
ICQ: 499797758
Skype: nagmat84

More information about the Freeradius-Users mailing list