[squid-users] Re: NTLM Authentication Helper Buffer Overflow Vulnerability

From: Adam Aube <aaube01@dont-contact.us>
Date: Fri, 11 Jun 2004 15:56:30 -0400

victor wrote:

> From the article it sgugest disableing the feature will plug the hole,
> I think the NTLM handler is not enabled by default correct? If I didn't
> complie with NTLM handler enabled, does it mean I'm safe?

Even if NTLM support is enabled, if you are not using NTLM auth in your
squid.conf, then you won't be vulnerable, as it won't be running.

Adam
Received on Fri Jun 11 2004 - 14:20:09 MDT

This archive was generated by hypermail pre-2.1.9 : Thu Jul 01 2004 - 12:00:02 MDT