[squid-users] RE: Using LDAP Authentication with Windows 2003 Domain

From: Adam Aube <aaube01@dont-contact.us>
Date: Thu, 03 Nov 2005 15:51:15 -0500

Chris Robertson wrote:
> Adam Aube wrote:

>> Yes, some versions of Mozilla do work with NTLM, but the user
>> still needs to enter their username and password - NTLM is then used for
>> the exchange between the browser and the proxy.
>
> Not entirely true. There is a configuration option
> (network.automatic-ntlm-auth.trusted-uris) which allows specifying domains
> to automatically supply NTLM auth information.

Good news for sites that like the ease of use NTLM + IE gives their users -
now they have a choice of more than one browser.

Now if only vendors would support something similar using Digest, which
would give the security of NTLM without breaking the HTTP protocol.

http://www.squid-cache.org/mail-archive/squid-users/200307/0503.html

> Sorry for the off topic post.

Not off-topic at all - this is useful information administrators need to
make informed decisions about what authentication scheme to use with Squid.

Adam
Received on Thu Nov 03 2005 - 13:54:44 MST

This archive was generated by hypermail pre-2.1.9 : Thu Dec 01 2005 - 12:00:09 MST