Wireshark · Ethereal-dev: [Ethereal-dev] Dissection of NTLMSSP blob inside ResponseToken of SPNEGO (in SMB Sessions Setup AndX

Ethereal-dev: [Ethereal-dev] Dissection of NTLMSSP blob inside ResponseToken of SPNEGO (in SMB

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

From: Yaniv Kaul <ykaul@xxxxxxxxxxxx>

Date: Sun, 13 Mar 2005 16:23:40 +0200

Any ideas how one might add this?

The PREVIOUS packet contained the OID (1.3.6....2.2.10), which isNTLMSSP, and properly dissected within MechToken the NTLMSSP blob (whichwas NTLMSSP_NEGOTIATE).However, the next packet contains the NTLMSSP_CHALLANGE (I assume, I cansee 'NTLMSSP 3' there), but since there's no OID, it's not dissected?

I was under the impression it should get it from the conversation data.

Prev by Date: Re: [Ethereal-dev] buildbot failure in FreeBSD 5.3 (IA64)
Next by Date: Re: [Ethereal-dev] Bug with localized decimal separator
Previous by thread: Re: [Ethereal-dev] Request: SOCKS protocol version 5 support
Next by thread: [Ethereal-dev] [PATCH] rtp_analysis, rtp_streams_dlg: Decimal separator fix, CSV clipboard copy
Index(es):
- Date
- Thread