Home Explore Help
Sign In
lqq
/
RealICQClient
Watch 2
Star 0
Fork 0
Files Issues 9 Pull Requests 0 Wiki
Tree: fe49452629
Branches Tags
RealICQClient
/
Controls
/
RealICQSockets
/
OverbyteIcsNtlmMsgs.pas

OverbyteIcsNtlmMsgs.pas 15 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436 
  1. {*_* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
    2. 

  2. 

  3. Author:       François PIETTE
    4. 

  4. Creation:     Jan 01, 2004
    5. 

  5. Version:      6.00
    6. 

  6. Description:  This is an implementation of the NTLM authentification
    7. 

  7.               messages used within HTTP protocol (client side).
    8. 

  8.               NTLM protocol documentation can be found at:
    9. 

  9.               http://davenport.sourceforge.net/ntlm.html
    10. 

  10. Credit:       This code is based on a work by Diego Ariel Degese
    11. 

  11.               <crapher@utenet.com.ar>. The code was not working at all but
    12. 

  12.               helped me a lot starting with NTLM.
    13. 

  13.               Csonka Tibor <bee@rawbite.ro> worked a lot on my original code,
    14. 

  14.               fixing it and making it work properly.
    15. 

  15. EMail:        francois.piette@overbyte.be     http://www.overbyte.be
    16. 

  16. Support:      Use the mailing list twsocket@elists.org
    17. 

  17.               Follow "support" link at http://www.overbyte.be for subscription.
    18. 

  18. Legal issues: Copyright (C) 2004-2006 by François PIETTE
    19. 

  19.               Rue de Grady 24, 4053 Embourg, Belgium. Fax: +32-4-365.74.56
    20. 

  20.               <francois.piette@overbyte.be>
    21. 

  21. 

  22.               This software is provided 'as-is', without any express or
    23. 

  23.               implied warranty.  In no event will the author be held liable
    24. 

  24.               for any  damages arising from the use of this software.
    25. 

  25. 

  26.               Permission is granted to anyone to use this software for any
    27. 

  27.               purpose, including commercial applications, and to alter it
    28. 

  28.               and redistribute it freely, subject to the following
    29. 

  29.               restrictions:
    30. 

  30. 

  31.               1. The origin of this software must not be misrepresented,
    32. 

  32.                  you must not claim that you wrote the original software.
    33. 

  33.                  If you use this software in a product, an acknowledgment
    34. 

  34.                  in the product documentation would be appreciated but is
    35. 

  35.                  not required.
    36. 

  36. 

  37.               2. Altered source versions must be plainly marked as such, and
    38. 

  38.                  must not be misrepresented as being the original software.
    39. 

  39. 

  40.               3. This notice may not be removed or altered from any source
    41. 

  41.                  distribution.
    42. 

  42. 

  43.               4. You must register this software by sending a picture postcard
    44. 

  44.                  to the author. Use a nice stamp and mention your name, street
    45. 

  45.                  address, EMail address and any comment you like to say.
    46. 

  46. Updates:
    47. 

  47. Mar 26, 2006 V6.00 New version 6 started
    48. 

  48. 

  49. 

  50. 

  51.  * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *}
    52. 

  52. unit OverbyteIcsNtlmMsgs;
    53. 

  53. 

  54. {$I OverbyteIcsDefs.inc}
    55. 

  55. {$R-}
    56. 

  56. {$Q-}
    57. 

  57. interface
    58. 

  58. 

  59. uses
    60. 

  60.     SysUtils, OverbyteIcsDES, OverbyteIcsMD4, OverbyteIcsMimeUtils;
    61. 

  61. 

  62. const
    63. 

  63.     IcsNtlmMsgsVersion     = 600;
    64. 

  64.     CopyRight : String     = ' IcsNtlmMsgs (c) 2004-2006 F. Piette V6.00 ';
    65. 

  65. 

  66. const
    67. 

  67.     Flags_Negotiate_Unicode               = $00000001;
    68. 

  68.     Flags_Negotiate_OEM                   = $00000002;
    69. 

  69.     Flags_Request_Target                  = $00000004;
    70. 

  70.     Flags_Negotiate_8                     = $00000008;  // unknown
    71. 

  71.     Flags_Negotiate_Sign                  = $00000010;
    72. 

  72.     Flags_Negotiate_Seal                  = $00000020;
    73. 

  73.     Flags_Negotiate_Datagram_Style        = $00000040;
    74. 

  74.     Flags_Negotiate_LAN_Manager_Key       = $00000080;
    75. 

  75.     Flags_Negotiate_Netware               = $00000100;
    76. 

  76.     Flags_Negotiate_NTLM                  = $00000200;
    77. 

  77.     Flags_Negotiate_400                   = $00000400;  // unknown
    78. 

  78.     Flags_Negotiate_800                   = $00000800;  // unknown
    79. 

  79.     Flags_Negotiate_Domain_Supplied       = $00001000;
    80. 

  80.     Flags_Negotiate_Workstation_Supplied  = $00002000;
    81. 

  81.     Flags_Negotiate_Local_Call            = $00004000;
    82. 

  82.     Flags_Negotiate_Allways_Sign          = $00008000;
    83. 

  83.     Flags_Target_Type_Domain              = $00010000;
    84. 

  84.     Flags_Target_Type_Server              = $00020000;
    85. 

  85.     Flags_Target_Type_Share               = $00040000;
    86. 

  86.     Flags_Negotiate_NTLM2_Key             = $00080000;
    87. 

  87.     Flags_Request_Init_Response           = $00100000;
    88. 

  88.     Flags_Request_Accept_Response         = $00200000;
    89. 

  89.     Flags_Request_Non_NT_Session_Key      = $00400000;
    90. 

  90.     Flags_Negotiate_Target_Info           = $00800000;
    91. 

  91.     Flags_Negotiate_1000000               = $01000000;  // unknown
    92. 

  92.     Flags_Negotiate_2000000               = $02000000;  // unknown
    93. 

  93.     Flags_Negotiate_4000000               = $04000000;  // unknown
    94. 

  94.     Flags_Negotiate_8000000               = $08000000;  // unknown
    95. 

  95.     Flags_Negotiate_10000000              = $10000000;  // unknown
    96. 

  96.     Flags_Negotiate_128_Bit_Encryption    = $20000000;
    97. 

  97.     Flags_Negotiate_Key_Exchange          = $40000000;
    98. 

  98.     Flags_Negotiate_56_Bit_Encryption     = $80000000;
    99. 

  99. 

  100.     // target information block types
    101. 

  101.     TIB_Type_Server                       = 1;
    102. 

  102.     TIB_Type_Domain                       = 2;
    103. 

  103.     TIB_Type_DNS_Full                     = 3;
    104. 

  104.     TIB_Type_DNS_Domain                   = 4;
    105. 

  105.     TIB_Type_ask_microsoft_or_god         = 5;
    106. 

  106. 

  107. type
    108. 

  108.     // security buffer
    109. 

  109.     TNTLM_SecBuff   = record
    110. 

  110.         Length        : Word;
    111. 

  111.         Space         : Word;
    112. 

  112.         Offset        : Cardinal;
    113. 

  113.     end;
    114. 

  114. 

  115.     // first message
    116. 

  116.     TNTLM_Message1  = record
    117. 

  117.         Protocol      : TArrayOf8Bytes;
    118. 

  118.         MsgType       : Cardinal;
    119. 

  119.         Flags         : Cardinal;
    120. 

  120.         Domain        : TNTLM_SecBuff;
    121. 

  121.         Host          : TNTLM_SecBuff;
    122. 

  122.     end;
    123. 

  123. 

  124.     // second message
    125. 

  125.     TNTLM_Message2  = record
    126. 

  126.         Protocol      : TArrayOf8Bytes;
    127. 

  127.         MsgType       : Cardinal;
    128. 

  128.         TargetName    : TNTLM_SecBuff;
    129. 

  129.         Flags         : Cardinal;
    130. 

  130.         Challenge     : TArrayOf8Bytes;
    131. 

  131.         Context       : TArrayOf8Bytes;   // reserved, not used
    132. 

  132.         TargetInfo    : TNTLM_SecBuff;
    133. 

  133.     end;
    134. 

  134. 

  135.     // interesting information from message 2
    136. 

  136.     TNTLM_Msg2_Info = record
    137. 

  137.         SrvRespOk     : boolean;                // server response was ok ?
    138. 

  138.         Target        : WideString;
    139. 

  139.         Domain        : WideString;
    140. 

  140.         Server        : WideString;
    141. 

  141.         Challenge     : TArrayOf8Bytes;
    142. 

  142.     end;
    143. 

  143. 

  144.     // third message
    145. 

  145.     TNTLM_Message3  = record
    146. 

  146.         Protocol      : TArrayOf8Bytes;
    147. 

  147.         MsgType       : Cardinal;
    148. 

  148.         LM            : TNTLM_SecBuff;
    149. 

  149.         NTLM          : TNTLM_SecBuff;
    150. 

  150.         Domain        : TNTLM_SecBuff;
    151. 

  151.         User          : TNTLM_SecBuff;
    152. 

  152.         Host          : TNTLM_SecBuff;
    153. 

  153.         SessionKey    : TNTLM_SecBuff;
    154. 

  154.         Flags         : Cardinal;
    155. 

  155.     end;
    156. 

  156. 

  157. function NtlmGetMessage1(const AHost, ADomain: String): String;
    158. 

  158. function NtlmGetMessage2(const AServerReply: String): TNTLM_Msg2_Info;
    159. 

  159. function NtlmGetMessage3(const ADomain, AHost, AUser, APassword: String; AChallenge: TArrayOf8Bytes): String;
    160. 

  160. 

  161. implementation
    162. 

  162. 

  163. 

  164. {* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *}
    165. 

  165. { Convert an text to a unicode text stored }
    166. 

  166. function Unicode(const AData: String): String;
    167. 

  167. var
    168. 

  168.     I, J : Integer;
    169. 

  169. begin
    170. 

  170.     SetLength(Result, Length(AData) * 2);
    171. 

  171.     J := 1;
    172. 

  172.     for I := 1 to Length(AData) do begin
    173. 

  173.         Result[J] := AData[I];
    174. 

  174.         Inc(J);
    175. 

  175.         Result[J] := #0;
    176. 

  176.         Inc(J);
    177. 

  177.     end;
    178. 

  178. end;
    179. 

  179. 

  180. 

  181. {* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *}
    182. 

  182. function DesEcbEncrypt(
    183. 

  183.     const AKey  : String;                  // Must be exactly 8 characters
    184. 

  184.     const AData : TArrayOf8Bytes): String;
    185. 

  185. var
    186. 

  186.     i, j, t, bit : Integer;
    187. 

  187.     XKey         : TArrayOf8Bytes;
    188. 

  188. begin
    189. 

  189.     XKey[0] := Byte(AKey[1]);
    190. 

  190.     XKey[1] := ((Byte(AKey[1]) shl 7) and $FF) or (Byte(AKey[2]) shr 1);
    191. 

  191.     XKey[2] := ((Byte(AKey[2]) shl 6) and $FF) or (Byte(AKey[3]) shr 2);
    192. 

  192.     XKey[3] := ((Byte(AKey[3]) shl 5) and $FF) or (Byte(AKey[4]) shr 3);
    193. 

  193.     XKey[4] := ((Byte(AKey[4]) shl 4) and $FF) or (Byte(AKey[5]) shr 4);
    194. 

  194.     XKey[5] := ((Byte(AKey[5]) shl 3) and $FF) or (Byte(AKey[6]) shr 5);
    195. 

  195.     XKey[6] := ((Byte(AKey[6]) shl 2) and $FF) or (Byte(AKey[7]) shr 6);
    196. 

  196.     XKey[7] := ((Byte(AKey[7]) shl 1) and $FF);
    197. 

  197. 

  198.     for i := 0 to 7 do begin
    199. 

  199.         for j := 1 to 7 do begin
    200. 

  200.             bit := 0;
    201. 

  201.             t   := XKey[i] shl j;
    202. 

  202.             bit := (t xor bit) and 1;
    203. 

  203.         end;
    204. 

  204.         XKey[i] := Byte((XKey[i] and $FE) or bit);
    205. 

  205.     end;
    206. 

  206.     SetLength(Result, 8);
    207. 

  207.     DES(AData, PArrayOf8Bytes(@Result[1])^, XKey, TRUE);
    208. 

  208. end;
    209. 

  209. 

  210. 

  211. {* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *}
    212. 

  212. function NtlmGetLMHash(
    213. 

  213.     const APassword : String;
    214. 

  214.     const ANonce    : TArrayOf8Bytes): String;
    215. 

  215. const
    216. 

  216.     Magic: TArrayOf8Bytes = ($4B, $47, $53, $21, $40, $23, $24, $25);
    217. 

  217. var
    218. 

  218.     I        : Integer;
    219. 

  219.     Pass     : String;
    220. 

  220.     PassHash : String;
    221. 

  221. begin
    222. 

  222.     Pass := Copy(UpperCase(APassword), 1, 14);
    223. 

  223.     for I := Length(APassword) to 14 do
    224. 

  224.         Pass := Pass + #0;
    225. 

  225. 

  226.     PassHash := DesEcbEncrypt(Copy(Pass, 1, 7),  Magic) +
    227. 

  227.                 DesEcbEncrypt(Copy(Pass, 8, 7), Magic) +
    228. 

  228.                 #0#0#0#0#0;
    229. 

  229. 

  230.     Result := DesEcbEncrypt(Copy(PassHash,  1, 7), ANonce) +
    231. 

  231.               DesEcbEncrypt(Copy(PassHash,  8, 7), ANonce) +
    232. 

  232.               DesEcbEncrypt(Copy(PassHash, 15, 7), ANonce);
    233. 

  233. end;
    234. 

  234. 

  235. 

  236. {* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *}
    237. 

  237. function NtlmGetNTHash(
    238. 

  238.     const APassword : String;
    239. 

  239.     const ANonce    : TArrayOf8Bytes): String;
    240. 

  240. var
    241. 

  241.     PassHash: String;
    242. 

  242. begin
    243. 

  243.     PassHash := MD4String(Unicode(APassword)) + #0#0#0#0#0;
    244. 

  244.     Result   := DesEcbEncrypt(Copy(PassHash,  1, 7), ANonce) +
    245. 

  245.                 DesEcbEncrypt(Copy(PassHash,  8, 7), ANonce) +
    246. 

  246.                 DesEcbEncrypt(Copy(PassHash, 15, 7), ANonce);
    247. 

  247. end;
    248. 

  248. 

  249. 

  250. {* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *}
    251. 

  251. function NtlmGetMessage1(const AHost, ADomain: String): String;
    252. 

  252. var
    253. 

  253.     Msg         : TNTLM_Message1;
    254. 

  254.     MessageAux  : String;
    255. 

  255.     Host        : String;
    256. 

  256.     Domain      : String;
    257. 

  257. begin
    258. 

  258.     Host   := UpperCase(AHost);
    259. 

  259.     Domain := UpperCase(ADomain);
    260. 

  260. 

  261.     FillChar(Msg, SizeOf(Msg), #0);
    262. 

  262.     // signature
    263. 

  263.     Move('NTLMSSP' + #0, Msg.Protocol, 8);
    264. 

  264. 

  265.     // message type (negotiate)
    266. 

  266.     Msg.MsgType := 1;
    267. 

  267. 

  268.     // prepare flags
    269. 

  269.     Msg.Flags := Flags_Negotiate_Unicode or
    270. 

  270.                  Flags_Negotiate_OEM or
    271. 

  271.                  Flags_Request_Target or
    272. 

  272.                  Flags_Negotiate_NTLM or
    273. 

  273.                  Flags_Negotiate_Allways_Sign { or
    274. 

  274.                  Flags_Negotiate_NTLM2_Key};
    275. 

  275. 

  276.     // host and/or domain supplied ?
    277. 

  277.     // host
    278. 

  278.     if Length(Host) > 0 then
    279. 

  279.          Msg.Flags := Msg.Flags or Flags_Negotiate_Workstation_Supplied;
    280. 

  280. 

  281.     // domain
    282. 

  282.     if Length(Domain) > 0 then
    283. 

  283.          Msg.Flags := Msg.Flags or Flags_Negotiate_Domain_Supplied;
    284. 

  284. 

  285.     // host
    286. 

  286.     Msg.Host.Length := Length(Host);
    287. 

  287.     Msg.Host.Space  := Msg.Host.Length;
    288. 

  288. 

  289.     if Msg.Host.Length > 0 then
    290. 

  290.         Msg.Host.Offset := $20
    291. 

  291.     else
    292. 

  292.         Msg.Host.Offset := 0;
    293. 

  293. 

  294.     // domain
    295. 

  295.     Msg.Domain.Length := Length(Domain);
    296. 

  296.     Msg.Domain.Space  := Msg.Domain.Length;
    297. 

  297. 

  298.     if Msg.Domain.Length > 0 then
    299. 

  299.          Msg.Domain.Offset := Msg.Host.Offset + Msg.Domain.Length
    300. 

  300.     else
    301. 

  301.          Msg.Domain.Offset := 0;
    302. 

  302. 

  303.     SetLength(MessageAux, SizeOf(Msg));
    304. 

  304.     Move(Msg, MessageAux[1], SizeOf(Msg));
    305. 

  305.     MessageAux := MessageAux + Host + Domain;
    306. 

  306. 

  307.     Result := Base64Encode(MessageAux);
    308. 

  308. end;
    309. 

  309. 

  310. 

  311. {* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *}
    312. 

  312. function NtlmGetMessage2(const AServerReply: String): TNTLM_Msg2_Info;
    313. 

  313. var
    314. 

  314.     Msg         : TNTLM_Message2;
    315. 

  315.     MsgInfo     : TNTLM_Msg2_Info;
    316. 

  316.     InfoType    : Word;
    317. 

  317.     InfoLength  : Word;
    318. 

  318.     InfoStr     : WideString;
    319. 

  319.     I           : Integer;
    320. 

  320.     NTLMReply   : String;
    321. 

  321. begin
    322. 

  322.     NTLMReply  := Base64Decode(AServerReply);
    323. 

  323. 

  324.     if Length(AServerReply) > 0 then begin
    325. 

  325.         // we have a response
    326. 

  326.         MsgInfo.SrvRespOk := TRUE;
    327. 

  327.         Move(NTLMReply[1], Msg, SizeOf(Msg));
    328. 

  328.         // extract target
    329. 

  329.         MsgInfo.Target := Copy(NTLMReply, Msg.TargetName.Offset + 1,
    330. 

  330.                                Msg.TargetName.Length);
    331. 

  331.         // extract challenge
    332. 

  332.         Move(Msg.Challenge, MsgInfo.Challenge, SizeOf(Msg.Challenge));
    333. 

  333.         // let's extract the other information
    334. 

  334.         I := Msg.TargetInfo.Offset + 1;
    335. 

  335.         // loop through target information blocks
    336. 

  336.         while I < Length(NTLMReply) do begin
    337. 

  337.             // extract type
    338. 

  338.             Move(NTLMReply[I], InfoType, SizeOf(InfoType));
    339. 

  339.             I := I + SizeOf(InfoType);
    340. 

  340.             // extract length
    341. 

  341.             Move(NTLMReply[I], InfoLength, SizeOf(InfoLength));
    342. 

  342.             I := I + SizeOf(InfoLength);
    343. 

  343.             // terminator block ?
    344. 

  344.             if (InfoType = 0) and (InfoLength = 0) then
    345. 

  345.                 break
    346. 

  346.             else begin
    347. 

  347.                 // extract information
    348. 

  348.                 InfoStr := Copy(NTLMReply, I, InfoLength);
    349. 

  349.                 if InfoType = TIB_Type_Server then
    350. 

  350.                     MsgInfo.Server := InfoStr
    351. 

  351.                 else if InfoType = TIB_Type_Domain then
    352. 

  352.                     MsgInfo.Domain := InfoStr;
    353. 

  353.                 // jump to next block
    354. 

  354.                 I := I + InfoLength;
    355. 

  355.             end;
    356. 

  356.         end;
    357. 

  357.     end
    358. 

  358.     else begin
    359. 

  359.         // no response from server
    360. 

  360.         MsgInfo.SrvRespOk := FALSE;
    361. 

  361.     end;
    362. 

  362.     Result := MsgInfo;
    363. 

  363. end;
    364. 

  364. 

  365. 

  366. {* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *}
    367. 

  367. function NtlmGetMessage3(const ADomain, AHost, AUser,
    368. 

  368.   APassword: String; AChallenge: TArrayOf8Bytes): String;
    369. 

  369. var
    370. 

  370.     Msg        : TNTLM_Message3;
    371. 

  371.     MessageAux : String;
    372. 

  372.     LM_Resp    : String[30];
    373. 

  373.     NT_Resp    : String[30];
    374. 

  374.     UDomain    : String;
    375. 

  375.     UHost      : String;
    376. 

  376.     UUser      : String;
    377. 

  377. begin
    378. 

  378.     UDomain    := Unicode(ADomain);
    379. 

  379.     UHost      := Unicode(AHost);
    380. 

  380.     UUser      := Unicode(AUser);
    381. 

  381.     FillChar(Msg, SizeOf(Msg), #0);
    382. 

  382.     Move('NTLMSSP' + #0, Msg.Protocol, 8);
    383. 

  383.     Msg.MsgType := 3;
    384. 

  384. 

  385.     // prepare domain
    386. 

  386.     Msg.Domain.Length := Length(UDomain);
    387. 

  387.     Msg.Domain.Space  := Msg.Domain.Length;
    388. 

  388.     Msg.Domain.Offset := $40;
    389. 

  389. 

  390.     // prepare user
    391. 

  391.     Msg.User.Length   := Length(UUser);
    392. 

  392.     Msg.User.Space    := Msg.User.Length;
    393. 

  393.     Msg.User.Offset   := Msg.Domain.Offset + Msg.Domain.Length;
    394. 

  394. 

  395.     // preapre host
    396. 

  396.     Msg.Host.Length   := Length(UHost);
    397. 

  397.     Msg.Host.Space    := Msg.Host.Length;
    398. 

  398.     Msg.Host.Offset   := Msg.User.Offset + Msg.User.Length;
    399. 

  399. 

  400.     // prepare LM and NTLM responses
    401. 

  401.     Msg.LM.Length     := $18;
    402. 

  402.     Msg.LM.Space      := Msg.LM.Length;
    403. 

  403.     Msg.LM.Offset     := Msg.Host.Offset + Msg.Host.Length;
    404. 

  404. 

  405.     Msg.NTLM.Length   := $18;
    406. 

  406.     Msg.NTLM.Space    := Msg.LM.Length;
    407. 

  407.     Msg.NTLM.Offset   := Msg.LM.Offset + Msg.LM.Length;
    408. 

  408. 

  409.     // no session key
    410. 

  410.     Msg.SessionKey.Length := 0;
    411. 

  411.     Msg.SessionKey.Space  := 0;
    412. 

  412.     Msg.SessionKey.Offset := 0;
    413. 

  413. 

  414.     // prepare flags
    415. 

  415.     Msg.Flags := Flags_Negotiate_Unicode or
    416. 

  416.                  Flags_Request_Target or
    417. 

  417.                  Flags_Negotiate_NTLM or
    418. 

  418.                  Flags_Negotiate_Allways_Sign {or
    419. 

  419.                  Flags_Negotiate_NTLM2_Key};
    420. 

  420. 

  421.     LM_Resp := NtlmGetLMHash(APassword, AChallenge);
    422. 

  422.     NT_Resp := NtlmGetNTHash(APassword, AChallenge);
    423. 

  423. 

  424.     SetLength(MessageAux, SizeOf(Msg));
    425. 

  425.     Move(Msg, MessageAux[1], SizeOf(Msg));
    426. 

  426. 

  427.     MessageAux := MessageAux + UDomain + UUser + UHost + LM_Resp + NT_Resp;
    428. 

  428. 

  429.     Result := Base64Encode(MessageAux);
    430. 

  430. end;
    431. 

  431. 

  432. 

  433. {* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *}
    434. 

  434. 

  435. end.
    436. 

  436.