cURL / Mailing Lists / curl-library / Single Mail

curl-library

Re: NTLM state in connections is too strict?

From: Fabian Keil <freebsd-listen_at_fabiankeil.de>
Date: Fri, 4 Jan 2013 19:41:32 +0100

Joe Mason <jmason_at_rim.com> wrote:

> Really the only thing curl needs to do with the "connection-oriented" NTLM is ensure that the 3-step NTLM handshake messages are all sent on the same connection, and ensure that when a request with credentials is assigned to a connection it is never assigned to one that is NTLM-authenticated with different credentials. (And ideally, it should be assigned to one that is NTLM-authenticated with the SAME credentials, for performance.) I don't think curl should be making decisions about whether NTLM authentication on a connection is allowed. The server's idea of state should be considered definitive.
>
> Thoughts?

I agree that mindlessly reacting to NTLM authentication tokens
without bothering with checking whether or not the connection is
theoretically already past that point is less likely to cause
problems in the real world.

Fabian

-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette: http://curl.haxx.se/mail/etiquette.html

application/pgp-signature attachment: signature.asc

Received on 2013-01-04

This message: [ Message body ]
Next message: Philip Montrowe: "Report on SSL cipher being used"
Previous message: Oscar Koeroo: "Re: [bagder/curl] 13606b: build: make use of 93 lib/*.c renamed files"
In reply to: Joe Mason: "NTLM state in connections is too strict?"
Next in thread: Daniel Stenberg: "Re: NTLM state in connections is too strict?"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]