Re: NTLM and proxying

From: Henrik Nordstrom <>
Date: Fri, 13 Apr 2001 11:55:38 +0200

Chemolli Francesco (USI) wrote:

> > Having NTLM proxied outside the LAN is a security risk, as a carefully
> > crafted NTLM challenge can reveal much details about the NTLM hash of
> > the user, so I imagine some networks would like to have NTLM proxying
> > disabled in all cases even if the proxy is capable of handling it.
> Sure. Enabling makes no sense for the ISP, but it has some benefits
> in a corporate environment.

Que? I am more of the opposite impression.

An ISP might not care.

In a corporate environment you care as you do not want external sites to
be able to snoop the internal passwords.

Received on Fri Apr 13 2001 - 04:01:41 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:13:45 MST