堆栈内存溢出
  简体   繁体   English

SMBJ 身份验证器支持哪个 NTLM 版本(1 或 2)?

[英]Which NTLM version (1 or 2) does SMBJ authenticator support?

 原文  2020-09-23 13:16:04       java/ ntlm/ ntlmv2/ smbj

问题描述

I am developing an application which needs to access a network share using SMB.我正在开发一个需要使用 SMB 访问网络共享的应用程序。 I was told that if security detects an authentication attempt using NTLM v. 1, then the respective firewall rules will be revoked.有人告诉我,如果安全检测到使用 NTLM v. 1 的身份验证尝试,那么相应的防火墙规则将被撤销。

Therefore I need to make sure that SMBJ (which I may use for this) supports NTLM v. 2 and uses it by default.因此,我需要确保SMBJ (我可能会用于此目的)支持 NTLM v. 2 并默认使用它。

Does SMBJ support NTLM v. 2? SMBJ 是否支持 NTLM v. 2? Does it use it by default?它默认使用它吗?

My own attempts at finding out我自己试图找出

In the source code of SMBJ I found following fragment:在 SMBJ 的源代码中,我发现了以下片段:

byte[] serverChallenge = challenge.getServerChallenge();
byte[] responseKeyNT = ntlmFunctions.NTOWFv2(String.valueOf(context.getPassword()), context.getUsername(), context.getDomain());
byte[] ntlmv2ClientChallenge = ntlmFunctions.(challenge.getTargetInfo());
byte[] ntlmv2Response = ntlmFunctions.getNTLMv2Response(responseKeyNT, serverChallenge, ntlmv2ClientChallenge);

The names getNTLMv2ClientChallenge and getNTLMv2Response suggest that NTLM v. 2 may be used.名称getNTLMv2ClientChallengegetNTLMv2Response表明可以使用 NTLM v. 2。

Also, JCIFS homepage claims that SMBJ is a successor project:此外,JCIFS 主页声称SMBJ 是一个后续项目:

Fortunately there are multiple new open source SMB Java projects to try including the following:幸运的是,有多个新的开源 SMB Java 项目可以尝试,包括以下内容:

jcifs-codelibs jcifs-ng smbj jcifs-codelibs jcifs-ng smbj

According to its FAQ , JCIFS has been using NTLM v. 2 since version 1.3.0.根据其常见问题解答,JCIFS 自 1.3.0 版以来一直使用 NTLM v. 2。

If如果

  1. JCIFS supports NTLM v. 2 and uses it by default, JCIFS 支持 NTLM v. 2 并默认使用它,
  2. SMBJ is based on JCIFS, SMBJ 基于 JCIFS,

then SMBJ should support NTLM v. 2 and use it by default.那么 SMBJ 应该支持 NTLM v. 2 并默认使用它。

1 个解决方案

解决方案1
 2 已采纳  2020-10-19 07:42:48

Yes, SMBJ uses either NTLMv2 or SPNEGO for authentication.是的,SMBJ 使用 NTLMv2 或 SPNEGO 进行身份验证。 You can configure which one you want to use.您可以配置要使用的那个。 It doesn't use NTLMv1.它不使用 NTLMv1。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 JMeter 是否完全支持 NTLM 身份验证? - Does JMeter fully support NTLM Authentication? 哪个版本的Grails支持JDK 8? - Which version of Grails support JDK 8? 哪个Selenium版本支持OperaDriver版本? - Which Selenium version support OperaDriver version? Authenticator#getPasswordAuthentication在Weblogic中返回basic而不是ntlm - Authenticator#getPasswordAuthentication returns basic instead of ntlm in Weblogic JPMS 是否支持模块版本? - Does JPMS support module version? “jzmq”是否支持ZeroMQ版本3? - Does “jzmq” support ZeroMQ Version 3? 哪个版本的hibernate支持jpa 2.1? - Which version of hibernate support jpa 2.1? Tomcat 支持哪些技术? - Which technologies does Tomcat support? 哪个 Jdk 版本将支持 windows xp - Which Jdk version will support windows xp JodaTime支持哪些日历? - Which calendars does JodaTime support?
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM