> If a connection is established to a server and authenticated via NTLM, > and one changes the CURLOPT_USERNAME or CURLOPT_PASSWORD, keeping the > URL the same, libcurl re-uses the older authenticated connection, > effectively ignoring the new user.
Isn't this a security issue (which we should announce and report)? Yehezkel Horowitz ------------------------------------------------------------------- List admin: http://cool.haxx.se/list/listinfo/curl-library Etiquette: http://curl.haxx.se/mail/etiquette.html
