On Fri, 2003-02-28 at 22:55, michele.de-martin@electrolux.it wrote:
> Now the problem:
> During one of the first steps of NTLM authentication squid send a "YR" code
> to the helper without adding any further data retrieved from the
> "Proxy-Authorization" field sent by the client.
> This field contains data such as workstation domain, workstation name, etc.
> Using a sniffer (ethereal) I was able to see those info: they started with
> a NTLMSSP identifier and so on.
> They are needed to my helper to retrieve the NTLM challenge from the
> correct domain/controller.
>
> How can I solve this? I mean: can those data be passed to the helper the
> same way they are for the "KK" code?
You can't solve this. The correct domain information is not available at
that step in the auth process. (see http://devel.squid-cache.org/ntlm
for more info).
This is what 'Trust relationships' are for in NT networks.
Rob
-- GPG key available at: <http://users.bigpond.net.au/robertc/keys.txt>.
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:13:45 MST