Re: NTLM over the Internet
From: [ MVP ] Sukesh Ashok Kumar (sukesh_at_v4cnet.com)
Date: 11/19/03
- Next message: PL: "Re: SSL Certificate"
- Previous message: Karl: "Re: SSL Certificate"
- In reply to: Marshall: "NTLM over the Internet"
- Next in thread: Karl Levinson [x y] mvp: "Re: NTLM over the Internet"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 20 Nov 2003 01:56:24 +0530
hi Marshall,
Answer to 2nd question, If you are using SSL, there is no reason to use
NTLM.
Rgds
Sukesh Ashok Kumar
"Marshall" <mashburnwest@yahoo.com> wrote in message
news:BC737A37-8FC0-4373-9DB9-7F1204346C86@microsoft.com...
> I've read in a couple of Microsoft articles that ntlm should not be used
over the internet for authenticating users. The reason given is that ntlm
relies on 'implicit end-to-end state' so that proxies positioned between the
client and web server can cause unexpected problems (most notably 'Access
Denied'). I have 2 questions related to this:
> 1. Does anyone have any further technical details on exactly what
situations would cause problems? I've setup a test server using ntlm over
the internet, tested from multiple locations (trying to access server
through a different path) but cannot produce the error. What proxy
configuration would cause this?
> 2. If SSL is being used, can ntlm be reliably used (i.e. must proxies
follow different rules for SSL so that 'implicit end-to-end state' would be
accomplished)?
>
> Thanks for any help,
>
> Marshall
- Next message: PL: "Re: SSL Certificate"
- Previous message: Karl: "Re: SSL Certificate"
- In reply to: Marshall: "NTLM over the Internet"
- Next in thread: Karl Levinson [x y] mvp: "Re: NTLM over the Internet"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
