On Wed, 15 Sep 2004, Lars Roland wrote:
> I have googled a bit around and the most answars I found, is that
> setting up squid to authenticate using ntlm, combinded with a
> transparent proxy is not possible - is this true ?
Proxy authentication REQUIRES the browser to be configured to use a proxy,
if not the browser MUST (per the HTTP standard) refuse to participate in
any such authentication requests.
And if you look on this from a security perspective it is obvious this
must be the case as the browser has no way of knowing or even less
identifying the proxy when you transparently hijack the browsers requests
and sends them to the proxy instead of the origin web server as requested
by the browser.
Regards
Henrik
Received on Wed Sep 15 2004 - 11:26:33 MDT
This archive was generated by hypermail pre-2.1.9 : Fri Oct 01 2004 - 12:00:02 MDT