Wireshark · Ethereal-dev: RE: [Ethereal-dev] telnet/authentication Kerberos stuff

Ethereal-dev: RE: [Ethereal-dev] telnet/authentication Kerberos stuff

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

From: "Amol Dixit" <adixit@xxxxxxxxxxx>

Date: Wed, 29 Sep 2004 13:44:32 -0400 (EDT)

Hi,
I am trying to decrypt a Kerberos ticket embedded in an AP_REQ.

Since the password is known, we make the keytab entry using the password
and salt using krb5_string_to_key() & krb5_kt_add_entry().
However krb5_rd_req() fails in krb5_old_decrypt() at this point inspite of
reading the same keytable entry.

if (memcmp(cksum.data, cksumdata, cksum.length) != 0) {
	ret = KRB5KRB_AP_ERR_BAD_INTEGRITY;
	goto cleanup;
    }

A similar question was asked before too - whether any manipulation needs
to be done on the 8 byte keytab entry contents before passing it to
k5_des_decrypt(). Can we use the key unmodified to pass to the decrypt
functions?
Does anyone have an insight on any manipulations needed (hints on salt
etc). ENCTYPE_DES_CBC_MD5 used.
Please let me know,
Thanks in advance,
Amol

Prev by Date: RE: [Ethereal-dev] help needed about sniffing on WLAN
Next by Date: Re: [Ethereal-dev] Re: [Ethereal-cvs] Rev 12134: /trunk/: acinclude.m4
Previous by thread: RE: [Ethereal-dev] ethereal 0.10.6 crash at startup (stack trace enclosed)
Next by thread: RE: [Ethereal-dev] telnet/authentication Kerberos stuff
Index(es):
- Date
- Thread