Re: [SQU] NTLM authentication?

Hi,
    I presume you downloaded the ntlm source via CVS? If so, please do a cvs
update. A number of issues were fixed and committed to CVS in the last
couple of days.

Do you want to a) verify the users passwords, or b) just find their username
using ntlm?

if b) then when you configure squid use soemthing
like --enable-ntlm-auth-modules=fakeauth --enable-ntlm-authentication. Those
two options will turn on the fakeauth helper which just gets the username
'securely' without prompting the user.

for a) you can either use a clear-text SMB helper (one of the standard mods)
or configure the ntlm source with
 --enable-ntlm-auth-modules=NTLMSSP --enable-ntlm-authentication
NTLMSSP uses a SAMBA or NT Domain controller to check the user's credentials
without putting the password on the wire.

I recommend you use the NTLMSSP helper as it is more secure than having the
passwords on the wire.

There is no manual as yet, however there have been a few discussions on this
list about it - try searching the archives.

Rob

----- Original Message -----
From: "Yuri Sytema" <Yuri.S@arma.nl>
To: <squid-users@ircache.net>
Sent: Monday, October 09, 2000 6:06 PM
Subject: [SQU] NTLM authentication?

> Hi,
>
> I want to run squid with ntlm 'authentication' to get the users username.
> I am able to configure, compile and run/install squid.
> I am now running 2 versions of squid 2.3.stable2 for production and on the
> same system on different port and with another name squid 2.3.stable4.
>
> I had to recompile anyway for the support of delaypools.
>
> But how to install NTLM.
> I have the source of NTLM, NTLMSSP, and the standard mods that are shipped
> with the squid source.
>
> Is there a manual or something?
>
> please help
>
> kind regards,
>
> Yuri Sytema
>
>
>
> --
> To unsubscribe, see http://www.squid-cache.org/mailing-lists.html
>
>

--
To unsubscribe, see http://www.squid-cache.org/mailing-lists.html