Re: [squid-users] Max Challgenge Reuse

From: Henrik Nordstrom <hno@dont-contact.us>
Date: Fri, 5 Aug 2005 13:21:55 +0200 (CEST)

On Wed, 3 Aug 2005, Kinkie wrote:

> With max_challenge_reuse set to anything but 0, squid will perform a
> replay attack on the NTLM authentication to increase authentication
> performance.
>
> Everything should work more or less fine (if you see failed auths you
> may want to enable the helper-fail-open config option and helper flag -
> be warned that doing so is a security compromise).

Except that there appears to still be some Squid stability issues with
NTLM Challenge-Reuse enabled.

Regards
Henrik
Received on Fri Aug 05 2005 - 05:22:04 MDT

This archive was generated by hypermail pre-2.1.9 : Thu Sep 01 2005 - 12:00:01 MDT