Noam Rathaus

Unfortunately with docker version, and Free Trial, the login process is "disabled" - making it not a good unit-test for the Ruby modifications

@enomothem we can use `:` as a delimiter for paths So that if you provide: `/something:/else:/third` ``` /something /else /third ``` will be looked sequentially

A proposed fix https://github.com/rapid7/metasploit-framework/pull/19130

I believe the bug is in `lib/rex/proto/mssql/client_mixin.rb` function `mssql_parse_reply`

Docker based setup: https://github.com/microsoft/mssql-docker/tree/master/linux/preview/examples/mssql-customize SQL setup: `src/mssql-docker/linux/preview/examples/mssql-customize/setup.sql` ``` CREATE DATABASE HelloWorld; GO CREATE LOGIN foo WITH PASSWORD = 'Password123!' MUST_CHANGE, CHECK_EXPIRATION = ON; GO CREATE USER foo FOR LOGIN 'foo';...

The error itself (returned by the server) doesn't show the `Reason` that `sqlcmd` shows

To use `fChangePassword` we would need to move to TDS 7.2

I tried changing the `TDS Version` inside `client.rb` to `0x72000001` without any other changes, the server doesn't respond to the login attempts (no packets are sent back) In the logs...

I found a reference to: `0x72090002` Here: https://github.com/prisma/tiberius/blob/8f66a699dfa041e7b5f736c7e94f92c945453c9e/src/tds/codec/login.rs#L16

This value seems to be the correct one, but `logs` indicate the structure is invalid: ``` 2024-04-22 13:37:14.54 Logon The login packet used to open the connection is structurally invalid;...