Re: [Samba] How does SMB 3.0 encryption work?
- Date: Mon, 14 Aug 2017 20:26:35 -0400
- From: Daniel Benoy via samba <samba@xxxxxxxxxxxxxxx>
- Subject: Re: [Samba] How does SMB 3.0 encryption work?
It does, thanks.
So if the password is known, or the KDC compromised, then in principle
MITM becomes possible?
On 2017-08-14 15:28, Andrew Bartlett wrote:
On Mon, 2017-08-14 at 06:45 -0400, Daniel Benoy via samba wrote:
Is it perhaps using your password somehow? Like, if an attacker knew
password that the client is using to connect, would it then be able to
MITM and watch all the writes and reads that client performs, but
an attacker is unlikely to know your password already, then they're
unable to know the initial symmetric cipher that each side is
expecting... or something like that?
This is essentially correct, for NTLM.
For Kerberos, it is the shared secret between the KDC and the file
server, and then the password between you and the KDC.
I'm drastically simplifying and in both cases, session keys are not
directly the password, but things encrypted with the password and
It isn't public key based.
I hope this helps,
To unsubscribe from this list go to the following URL and read the