> I have squid with NTLM running on a Linux box for testing
> purposes. Its
> only been up for a couple of days and I only have a couple
> users connecting
> through it.
>
> For those of you who have it running in production (no longer
> just testing),
> what helper are you using? NTLMSSP? Fake_auth?
fake_auth does virtually nothing, so it doesn't count :-)
> I'm a little concerned with the extra traffic and work the
> BDC has to do
> when using NTLMSSP. Have any of you using found anything to
> worry about?
Much, much less than with Microsoft-Proxy. In the worst-case
scenario your DC should get at most N*C authentication requests
for each T, where
N is the number of authentication helpers you configured, C
is the number of clients using the proxy and T is the
challenge renewal interval you configured for the NTLMSSP helper
program.
Under best conditions, the number could be as low as 1*C for each T.
> Yuri, I'm in a similar Environment as you. Citrix Servers
> and the need to
> block/allow access for the clients. Looks like Robert and
> Kinkie have a
> winner here for this environment.
> Robert/Kinkie...if no one has said it yet...I personally
> appreciate the time
> and work you've put into this much needed addition for Squid. Thanks!
We aim to please <smile>.
Donations and expensed trips are of course welcome, and I think I'm
talking about both of us <evilgrin>.
-- /kinkie -- To unsubscribe, see http://www.squid-cache.org/mailing-lists.htmlReceived on Thu Nov 23 2000 - 10:15:40 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:56:34 MST