RE: [squid-users] NTLM lose username

From: Mrvka Andreas <[email protected]>
Date: Tue, 27 Aug 2002 09:54:14 +0200

hi!

a new NTLM connection really opens first 2 denied responses,
which are stored in the access.log????
can i do some kind of prevent writing these 2 senseless entries?

in my opinion, the access.log is growing extremly big and i can't
imagine that its usefull for log-examination when there is so much
... tcp/denied for anonymous user

kind regards,
Andreas



-----Original Message-----
From: Chemolli Francesco (USI) [mailto:ChemolliF@GruppoCredit.it]
Sent: Monday, August 26, 2002 6:29 PM
To: 'Mrvka Andreas'; Squid-Users
Subject: RE: [squid-users] NTLM loose username


> hi squidders!
>
> i am using NTLM for authentication with squid 2.5.
> can anybody explain me why i am loosing the username for a
> millisecond?
> (see line 2)
> which authentication_ttl or something like that is wrong?

NTLM authentication is connection-oriented (which is by
itself a violation of the most sacred HTTP standards).
Every time a new TCP connection is made to the server, a
new authentication is performed. That operation involves
2 407/denied responses before the user's credentials can
be obtained.

It's brain-dead, but that's the way it is.


--
        /kinkie
Received on Tue Aug 27 2002 - 01:54:20 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:09:50 MST