cURL
Haxx ad
libcurl
Mailing Lists

curl's project page on SourceForge.net

Sponsors:
Haxx

cURL > Mailing List > Monthly Index > Single Mail

curl-tracker mailing list Archives

[ curl-Bugs-1364655 ] curl doesn't work with NTLM transparently

From: SourceForge.net <noreply_at_sourceforge.net>
Date: Wed, 23 Nov 2005 22:16:38 -0800

Bugs item #1364655, was opened at 2005-11-23 14:03
Message generated for change (Comment added) made by techtonik
You can respond by visiting:
https://sourceforge.net/tracker/?func=detail&atid=100976&aid=1364655&group_id=976

Please note that this message will contain a full copy of the comment thread,
including the initial issue submission, for this request,
not just the latest update.
Category: documentation
Group: bad behaviour
Status: Open
Resolution: Invalid
Priority: 3
Submitted By: anatoly techtonik (techtonik)
Assigned to: Daniel Stenberg (bagder)
Summary: curl doesn't work with NTLM transparently

Initial Comment:
curl 7.15.0 (i586-pc-mingw32msvc) libcurl/7.15.0 zlib/1.2.2
Protocols: tftp ftp gopher telnet dict ldap http file
Features: Largefile NTLM SSPI libz

While working through intranet NTLM proxy curl fails to
authenticate if username is not set explicitly. For
example this will not pass:

curl.exe -v --proxy-ntlm -x 192.168.1.1:3128 -O -C -
http://go.microsoft.com/fwlink/?LinkId=51433

It will not ask for username/password either. If you
mention username with -U option curl asks for password
and auth passes, but this is very inconvenient, because
you need either to specify your password every time new
download initiated or store it somewhere in clear form,
which is no good practice, especially if passwords are
changed quite often.

IE and FireFox are able to authenticate transparently
without asking for password, so I suppose curl also
able to do it. Seems like a bug.

----------------------------------------------------------------------

>Comment By: anatoly techtonik (techtonik)
Date: 2005-11-24 06:16

Message:
Logged In: YES
user_id=669020

Let me disagree with you. IE and Firefox do not ask for
password at all. I can only suppose what they delegate
authentication to some system component on 407 proxy
response. Password is used for system login and it is not
stored anywere.

----------------------------------------------------------------------

Comment By: Daniel Stenberg (bagder)
Date: 2005-11-23 15:36

Message:
Logged In: YES
user_id=1110

IE and FireFox of course solves this by saving the password
"in clear form".

curl doesn't and is not made to do so, which makes this not
a bug but possibly a missing feature.

----------------------------------------------------------------------

You can respond by visiting:
https://sourceforge.net/tracker/?func=detail&atid=100976&aid=1364655&group_id=976
Received on 2005-11-24

These mail archives are generated by hypermail.

donate! Page updated November 12, 2010.
web site info

File upload with ASP.NET