Re: FW: Squid NTLM work

Current status is semi-functional I think. It can get the username from
the client station, but no real verification of the password information
is performed.

I'll try to collect the technical information Andy has provided and put
it on the SourceForge web site.

What needs doing is the password verification part.
1. Connecting to the NTLM service
2. Getting a useable challenge from the service
3. Sending the clients response to the NTLM service to verify the
validity of the client password

I think Andy has done some work in preparing the authenticator interface
for this. Don't know how far he has come.

The sources is available via CVS from cvs.sourceforge.net. See the web
pages http://squid.sourceforge.net/ for details. (method differs
slightly if you want read access or full write access for contributing
changes/fixes)

--
Henrik Nordstrom
Squid hacker
Tony Gale wrote:
> 
> I sent this to Andy (awaiting response). In the mean time I thought
> you guys might be able to give me a steer (as it were).
> 
> -tony
> 
> -----FW: Squid NTLM work-----
> 
> Date: Tue, 16 May 2000 14:34:09 +0100 (BST)
> From: Tony Gale <gale@syntax.dera.gov.uk>
> To: ad@netbsd.org
> Subject: Squid NTLM work
> 
> Andy,
> 
> I have been allocated some time to work on NTLM auth within Squid.
> Are you still the right person to speak to about this?
> 
> Obviously I'd like to make best use of my time (assuming it's needed),
> and so am looking for a leg up on:
>         o current status
>         o implementation layout
>         o technical information
>         o what needs doing
>         o "the right direction"
> 
> Thanks
> 
> -tony
> 
> --------------End of forwarded message-------------------------
> 
> ---
> E-Mail: Tony Gale <gale@syntax.dera.gov.uk>
> Biology is the only science in which multiplication means the same thing
> as division.
> 
> The views expressed above are entirely those of the writer
> and do not represent the views, policy or understanding of
> any other person or official body.