Re: [squid-users] Does Squid 2.5.PRE5 support NTLM WWW authentica tion ?

From: Simon White <[email protected]>
Date: Fri, 12 Apr 2002 11:36:00 +0000

12-Apr-02 at 13:06, Henrik Nordstrom (hno@marasystems.com) wrote :
> > If the destination web server would use something different like basic
> > authentication, wouldn't it then work?
>
> Ofcourse. Basic HTTP authentication is fully HTTP compliant, and can be
> proxied by all HTTP proxies.

FWIW, Basic HTTP authentication is the way to go. It is less secure than
NT Challenge/Response found on IIS4 and 5, but since it's a closed
protocol only IE browsers can use it, and still I have had problems even
with IE. If people from outside your network (e.g. on an extranet) or
general surfers should be able to access content via authentication on the
web server, then Basic HTTP authentication should be used. To make it more
secure, run it over SSL/TLS.

Regards,

-- 
[Simon White. vim/mutt. simon@mtds.com. GIMPS:68.31% see www.mersenne.org]
Not only does Jesus save, but he makes nightly off-site backups.
[Linux user #170823 http://counter.li.org. Home cooked signature rotator.]
Received on Fri Apr 12 2002 - 06:02:18 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:07:32 MST