David Bell

eTLS is not a 'flavour' of TLS at all, and is snake oil: https://www.eff.org/deeplinks/2019/02/ets-isnt-tls-and-you-shouldnt-use-it

The SMB protocol itself does not have a built in feature to do this - the intention is that the client is part of the same domain and can use...

This sounds like the Samba server has a weird configuration, like SMB3 only, or pre 'NT' protocol. Can you show the smb.conf?

Okay so I found time to look into this, and I think I might have found something interesting. In MS-SMB2 the documentation suggests that the negotiation is quite different between...

Yes, so this is the issue. What we need to do is: 1. Send SMB COM NEGOTIATE, get response 2. Send SMB2 NEGOTIATE, get response I'm writing an implementation of...

I have a working implementation of SMB2 COM NEGOTIATE and I can now, with pysmb, connect to SMB servers using the 2.1 dialect. However, now I'm getting weird errors after...

Right, the problem is credits. With SMB 2.1 enabled (which actually is SMB2 proper, really), the client must request credits. pysmb does not, and so the server gets angry.

Yup. Would you like me to send the work I've done so far, even if incomplete? I'll create a branch and share it with you a bit later today.

I was gonna read this repo in depth: https://github.com/hirochachacha/go-smb2 Its a working SMB2/3 client, with credits support. Its Go, so its quite easy to follow. It has a fully implemented...

Microsoft included a 'helpful' diagram to explain: