[squid-users] NTLM www authentication through a transparent Squid

From: Martin Marji Cermak <[email protected]>
Date: Wed, 10 Nov 2004 13:43:07 +0800

Hello Guys,
I use Squid 2.5.STABLE7 as a transparent proxy and I noticed Squid removed
"WWW-Authenticate: NTLM" and
"WWW-Authenticate: Negotiate" headers.

I searched the list and available documentation so I know that NTLM is
still unproxyable.
But can I somehow prosper from the fact my Squid is transparent?

I don't mind if all NTLM authenticated pages going through a transparent
Squid are not cached, I just need to let them through somehow, so it
does not inhibit cliens from NTLM authentication.

I think I cannot implement and use a CONNECT method (Squid is transparent).
But how about traffic forwarding? Transparent proxy already modifies src
address of a request, so it can modify the dst address of the request as
well (use the one provided by www-client) if necessary.

Any idea how to let NTLM go through?

Thank you,
Marji
Received on Tue Nov 09 2004 - 22:42:37 MST

This archive was generated by hypermail pre-2.1.9 : Wed Dec 01 2004 - 12:00:01 MST