[squid-users] Problem with ntlm_auth from Rost, Werner on 2002-09-09 (squid-users)

From: Rost, Werner <Werner.Rost@dont-contact.us>
Date: Mon, 9 Sep 2002 15:48:27 +0200

I found some FATAL-message in cache.log:

FATAL: authenticateNTLMHandleReply: called with no result string

Squid Cache (Version 2.5.PRE11-20020828): Terminated abnormally.
CPU Usage: 0.335 seconds = 0.053 user + 0.282 sys
Maximum Resident Size: 5320 KB
Page faults with physical i/o: 0
Memory usage for squid via mallinfo():
        total space in arena: 4334 KB
        Ordinary blocks: 4026 KB 6726 blks
        Small blocks: 0 KB 0 blks
        Holding blocks: 0 KB 0 blks
        Free Small blocks: 0 KB
        Free Ordinary blocks: 307 KB
        Total in use: 4026 KB 93%
        Total free: 307 KB 7%

At the same time a core dump was generated.

I found similar discussions in the archives. Robert Collins metioned "There
is an endianness bug in NTLM at the moment. I've a fix pending
checkin." (17-May-2002)

Seems that this bug is not fixed yet.

Environment:

OS: TRU64 5.1A patchkit 3
Squid Cache (Version 2.5.PRE11-20020828)
Internet Explorer 5.5

configuration of Squid:

./configure --enable-auth="ntlm,basic" \
            --enable-external-acl-helpers="winbind_group" \
            --enable-basic-auth-helpers="winbind" \
            --enable-ntlm-auth-helpers="winbind"

Installation of samba 2.2.5

./configure --with-winbind \
--with-winbind-auth-challenge

Inserting the patch for smbpasswd.c
make
make install

Lines in squid.conf:

auth_param ntlm program /usr/local/squid/libexec/wb_ntlmauth
auth_param ntlm children 5
auth_param ntlm max_challenge_reuses 0
auth_param ntlm max_challenge_lifetime 2 minutes
#
auth_param basic program /usr/local/squid/libexec/wb_auth
auth_param basic children 5
auth_param basic realm SQUID-Proxy ZF Boge Bonn
auth_param basic credentialsttl 2 hours

> Mit freundlichen Grüßen / regards
> Werner Rost
>
> ---------------------------------------------------------------------
> ZF Boge GmbH
> Werner Rost
> IT
> Friesdorfer Str. 175
> D-53175 Bonn
>
>
> phone: +49/228/3825 420
> fax: +49/228/3825 398
> werner.rost@zfboge.com
>
> www.boge-vibrationcontrol.com
> ---------------------------------------------------------------------
>
>

---------------------------------------------------------
This Mail has been checked for Viruses
Attention: Encrypted mails can NOT be checked!

Diese Mail wurde auf Viren geprueft
Hinweis: Verschluesselte mails koennen NICHT auf Viren geprueft werden!
---------------------------------------------------------
Received on Mon Sep 09 2002 - 07:50:50 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:10:10 MST