On Thu, 4 Nov 2004, Jamie Lokier wrote:

> On Thu, 4 Nov 2004, Daniel Stenberg wrote:

> > Note that David's test logs showed that his IE session used
> > Negotiate authentication all the time. While enlightening,
> > it isn't exactly the case we were discussing.

I've tried to get the server to only allow NTLM, but I can't seem to
swing it. I hope to get some help tomorrow (Friday).
 
> > However, since it sends the file twice and doesn't forcibly
> > close the connection, I can't see why NTLM wouldn't work
> > fine with this as well.
>
> It *does* forcibly close the connection.
>
> Look for the "Connection: close" from the server in the first
> response. It's not in the second or third responses.

There is a checkbox that enables HTTP keep-alive. Is it worth
unchecking it and testing again? Up to now it's been checked.

> We don't know that the data is fully sent twice.
>
> IE might abort sending when it's read the first 401 response with
> "Connection: close" -- this is only possible if the server sends 401
> before (or without) reading all the request body. Perhaps it is -
> that's why I asked David for more details.
>
> An Ethereal dump of the same transaction with a large file would be
> very helpful.

I'll see what I can put together.

-DB
Received on 2004-11-05