Re: [squid-users] squid and ldap and active directory

From: Henrik Nordstrom <hno@dont-contact.us>
Date: Fri, 2 Apr 2004 00:15:50 +0200 (CEST)

On Thu, 1 Apr 2004 Jim_Brouse/PYT@PASCUAYAQUITRIBE.ORG wrote:

> Since winbind uses ``base64'' encoding is it possible for squid and winbind
> to only look at the username being presented and not ask for the password
> therefore the password would not be transmitted in clear text?

????

Basic authentication uses 'base64' encoding of "username:password".

NTLM authentication uses 'base64' encoding of binary Microsoft NTLMSSP
challenge/response messages.

In both cases the user login+password (or equivalent) must be known to the
client browser. You can not have the browser send the login without the
browser knowing the user logged in.

Regards
Henrik
Received on Thu Apr 01 2004 - 15:15:54 MST

This archive was generated by hypermail pre-2.1.9 : Fri Apr 30 2004 - 12:00:01 MDT