On 30/03/2011 00:45, "Amos Jeffries" <squid3_at_treenet.co.nz> wrote:
> On Tue, 29 Mar 2011 15:09:20 +0200, Fran Márquez wrote:
>> Hi,
>>
>> Is the Negotiate auth protocol faster than NTLM or it also increase
>> (x2 or x3) the http traffic when is used?
>>
>> Regards,
>> F.J
>
> Negotiate is a wrapper protocol, so the answer is maybe.
>
> In modern browsers it commonly wraps Kerberos auth. Which is more
> efficient on the handshakes, has stronger hash algorithms than NTLM and
> backend helpers avoid the 256 concurrency limit in winbind. So is worth
> trying to use either way.
>
> Older versions of MS software is known to wrap it around NTLM. Which
> means no gains and no real difference at all.
>
> If you try the migration and hit these old MS software problems Markus
> Moeller is currently developing a wrapper helper to handle both
> Negotiate/NTLM and negotiate/Kerberos.
>
> Amos
Earlier post by Markus regarding this - haven't had time to test this
myself but might help you to test with:
http://squid-web-proxy-cache.1019090.n4.nabble.com/NTLM-Kerberos-Authentica
tion-with-Windows-7-td3331448.html
The information contained in this e-mail is of a confidential nature and is intended only for the addressee. If you are not the intended addressee, any disclosure, copying or distribution by you is prohibited and may be unlawful. Disclosure to any party other than the addressee, whether inadvertent or otherwise, is not intended to waive privilege or confidentiality. Internet communications are not secure and therefore Conde Nast does not accept legal responsibility for the contents of this message. Any views or opinions expressed are those of the author.
The Conde Nast Publications Ltd (No. 226900), Vogue House, Hanover Square, London W1S 1JU
Received on Wed Mar 30 2011 - 08:58:22 MDT
This archive was generated by hypermail 2.2.0 : Wed Mar 30 2011 - 12:00:02 MDT