[squid-users] Improving security of authentication (MSNTAUTH)

From: Mads Rasmussen <mads@dont-contact.us>
Date: Wed, 27 Jun 2001 11:19:54 -0300

I noticed that when using msntauth the request for authentication is BASIC.

Any chance of changing the scheme to at least DIGEST?

I thought about inserting code to do a MD5 digest in the msntauth code but I
don't know if NT will approve and then I realized that it must be squid that
starts the authentication sequence and there after calls the authentication
program. That is squid is doing the request.

Maybe I'm in the dark here

Anyone could enlighten me a little?

Also tips on how to improve the security would be appreciated. I am a little
concerned about sending passwords in the clear although its only internally.

Is there another authenticator available that talks with Win NT in a more
secure manner?

Regards,

Mads
Received on Wed Jun 27 2001 - 08:22:29 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:00:51 MST