On Sun, 2002-06-09 at 09:52, Miquel van Smoorenburg wrote: > In article <[🔎] 1023322862.5138.20.camel@mrlinux>, > Mark Roach <mrroach@okmaybe.com> wrote: > >What you want is NTLM authentication. Unfortunately the current stable > >version of squid does not have support for it. > >I have built a squid 2.5pre5 .deb(binary) package with NTLM support that > >has been the proxy for ~150 users in my company for a few months now. > > You do know that the NTLM module is full of buffer overruns and > sprintf vulnerabilities, and that exploits for it appear to exist? > Remote root waiting to happen .. If this entire system was in any way visible from beyond the corporate firewall, it'd be a worry for me. As it is, it's entirely an internal matter. The authentication mechanism is, for me, just to make the log files look prettier. Regards Peter. -- Peter Whysall peter.whysall@ntlworld.moc The TLD in my email address is sdrawkcab. Debian GNU/Linux 3.0 sid -- kernel 2.4.18
Attachment:
signature.asc
Description: This is a digitally signed message part