Hi,
Il 19.58 18/05/2002 Yee Man Chan ha scritto:
>Hi,
>
> I heard that the Digest scheme described in
>RFC2617 is stronger than the NTLM scheme. Is this
>true? If so, does that mean doing NTLM in Squid is not
>of that high priority?
>
> I think if browsers support Digest and if they
>really pick the strongest authentication scheme they
>know, then they will pick Digest all the time.
>Therefore while it will be nice to support NTLM, it is
>not that urgent. It is possible that my conjecture is
>wrong because MSIE might think NTLM is stronger than
>Digest or it doesn't implement Digest at all. Is that
>the case?
According to Q264921 from Microsoft Knowledge base, on Windows 2000
platforms, starting with IE 5.0, the following authentication schema are
supported:
Basic, Integrated (NTLM or Kerberos based), Digest (Active Directory based).
It's not clear if IE 5.0 and later on Windows NT 4 or 9x supports something
other Basic and NTLM integrated.
So NTLM is at this time the more secure widely authentication schema available.
Regards
Guido
>Cheers,
>Yee Man
>
>__________________________________________________
>Do You Yahoo!?
>LAUNCH - Your Yahoo! Music Experience
>http://launch.yahoo.com
-
=======================================================
Serassio Guido
Via Albenga, 11/4 10134 - Torino - ITALY
E-mail: guido.serassio@serassio.it
WWW: http://www.serassio.it
Received on Sat May 18 2002 - 12:25:51 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:15:28 MST