On tor, 2007-09-27 at 11:45 +0200, Markus.Rietzler@rzf.fin-nrw.de wrote:
> one more question: in squid.conf i can set "keep_alive off" (also for
> ntlm_auth).
> if keep-alive is a must for NTLM challenge response, then what
> "keep_alive off" means?
> that would contractict the "must"...???
NTLM is complex...
The keep-alive auth_param option controls the response to the initial
request before the client even tries to use NTLM. Some clients require
the connection to be closed here to work proper. This parameter controls
only that case, nothing else.
NTLM then requires a persistent connection for the two requests carrying
the NTLM actual handshake (request 2 & 3 or a full NTLM sequence). This
requires the client to signal keep-alive support via Proxy-Connection:
keep-alive (Connection: keep-alive also works). This is automatically
done even if client_persitent_connections is set to off.
Regards
Henrik
This archive was generated by hypermail pre-2.1.9 : Mon Oct 01 2007 - 12:00:03 MDT