[security-dev 01590]: Re: Request for comment: spec: NTLM as a SASL mech

Natalie Li Natalie.Li at Sun.COM
Wed Feb 3 08:34:13 PST 2010


Max (Weijun) Wang wrote:
> Hi Nico
>
> Is there a separate OID for NTLM as a GSS-API mech?
Yes, OID for NTLM is "1.3.6.1.4.1.331.2.2.10"
And the encoded OID octet string is:

102 #define GSS_MECH_NTLMSSP_OID "\053\006\001\004\001\202\067\002\002\012"


Natalie

>  I dare not mix it into the current SPNEGO mech.
>
> BTW, update a few things, permanent URL is now:
>
>    http://cr.openjdk.java.net/~weijun/spec/NTLMSASL
>
> Or, go http://cr.openjdk.java.net/~weijun/spec/ for a list.
>
> Thanks
> Max
>
> On Feb 3, 2010, at 11:45 AM, Nicolas Williams wrote:
>
>   
>> On Tue, Feb 02, 2010 at 02:49:54PM +0800, Max (Weijun) Wang wrote:
>>     
>>> Hi All
>>>
>>> Please take a review on this draft before I send it for CCC:
>>>
>>>   http://cr.openjdk.java.net/~weijun/spec/NTLMSASL.0.1
>>>
>>> The spec includes a raw NTLM API defined in com.sun.* namespace and
>>> describes the newly added SASL mech.
>>>       
>> If the SASL mechanism is the same as the GSS mechanism... you might be
>> able to implement NTLM as a GSS mechanism and get both for free.
>>
>> Nico
>> -- 
>>     
>
>   

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.openjdk.java.net/pipermail/security-dev/attachments/20100203/4b00cbdc/attachment.html 


More information about the security-dev mailing list