Re: Squid-2.5.STABLE3 todo from Andrew Bartlett on 2003-05-10 (squid-dev)

From: Andrew Bartlett <abartlet@dont-contact.us>
Date: 11 May 2003 14:46:30 +1000

On Sat, 2003-05-10 at 19:53, Henrik Nordstrom wrote:
> On Saturday 10 May 2003 09.55, Henrik Nordstrom wrote:
> > On 10 May 2003, Robert Collins wrote:
> > > There may be an NTLM bug - please hold off until Monday for
> > > stable3.
> >
> > There is still open discussions about ident also.. (but works in my
> > tests).
>
> And an external_acl report which I am trying to understand..
>
> Due to bug preassure and evaluation of the current state STABLE3 has
> been reopened for a few days more. Hope to re-enter freeze on tuesday
> after which STABLE3 has to cool down before release.
>
> TODO for STABLE3 right now:
>
> - Configrmation that the of the reported ident problem is fixed
> Works in my tests, but user still has problems.
> (Bug #620)
> - Verification of possible exteral_acl corruption
> (Bug #621)
> - Possible NTLM problem
> (Robert)
> - Evaluation of the wb_group 1.2 update.
> Preleminary evaluation from description looks OK to apply.
> (Guido)
> - Content-Disposition header not recognized
> (Bug #607)
> - Segfault in authenticateAuthenticate() if debugging enabled
> (Bug #591)
>
> Issues which probably deserves to be fixed in 2.5.STABLE
>
> Bug #610: Fix to enable real NTLM (not just LM)
> Can someone with a NT network please verify the proposed
> ntlm_auth helper update? I cannot test this..

My (possibly badly named) ntlm_auth helper is in Samba 3.0, due to enter
feature freeze shortly. This supports all NTLM types, as well as ASCII
and unicode. It is intended to replace wb_ntlmauth for Samba 3.0, as
the winbind pipe interface has changed again.

> Bug #495: Connect timeout should produce a 504 or 503
> No patch yet proposed
>
> Bug #267: Form POSTing troubles with NTLM authentication
> No patch yet proposed.
>
> Bug #616: Negative cached 404 replies with VARY header never
> matches
> Not yet verified but most likely true
>
> Issues which needs to be analyzed and verified:
> Some of these are quite likely fixed already by the STABLE2 auth
> fixes..
>
> Bug #592: Problem in proxy_auth and newer_direct/always_direct
> Bug #585: NTLM results in Auth_user_request was NULL!
> Bug #582: ntlmGetString: bad ascii: ffffffb9 followed by FATAL:
> authenticateNTLMHandleReply: called with no result
> string
> Bug #568: proxy_auth basic does not work with always_direct
> and never_direct
> Bug #567: squid changes "odd" characters in password
> Bug #556: cache_peer_access can't deal with acl of type proxy_auth
> Bug #542: proxy_auth w/ always_direct returns 'page cannot be
> displayed' message
> Bug #518: NTLM does no work (wb_auth)
>
> Regards
> Henrik

-- 
Andrew Bartlett                                 abartlet@pcug.org.au
Manager, Authentication Subsystems, Samba Team  abartlet@samba.org
Student Network Administrator, Hawker College   abartlet@hawkerc.net
http://samba.org     http://build.samba.org     http://hawkerc.net

application/pgp-signature attachment: This is a digitally signed message part

Received on Sat May 10 2003 - 22:46:55 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:19:53 MST