Chemolli Francesco (USI) wrote:
> > Having NTLM proxied outside the LAN is a security risk, as a carefully
> > crafted NTLM challenge can reveal much details about the NTLM hash of
> > the user, so I imagine some networks would like to have NTLM proxying
> > disabled in all cases even if the proxy is capable of handling it.
>
> Sure. Enabling makes no sense for the ISP, but it has some benefits
> in a corporate environment.
Que? I am more of the opposite impression.
An ISP might not care.
In a corporate environment you care as you do not want external sites to
be able to snoop the internal passwords.
-- HenrikReceived on Fri Apr 13 2001 - 04:01:41 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:13:45 MST