Dmitry Butskoy wrote:
There is a module, "mod_auth_ntlm_winbind", which allows to
authenticate users against a Windows domain using "NTLM" and
"Negotiate" authentication mechanisms. The module uses a way,
recommended by the Samba team -- it utilizes a special helper program
"ntlm_auth", which interacts with Samba's "winbind" daemon. (This way
Squid does ntlm already).
For historical reasons, this module still lives in Samba's CVS (see
http://viewcvs.samba.org/cgi-bin/viewcvs.cgi/trunk/mod_auth_ntlm_winbind/?root=lorikeet
) and has no any normal "upstream". This does not mean that the module
is unstable -- it is successfully used long time. Recently it was
included into Debian and Fedora (I maintain it in Fedora, see
http://download.fedora.redhat.com/pub/fedora/linux/updates/7/SRPMS/mod_auth_ntlm_winbind-0.0.0-0.5.20070129svn713.fc7.src.rpm
)
[snip]
Moreover, because of its current location, this module lacks good
skilled httpd developers. There can be a lot of things to fix or to
improve on it.
Could anyone look on it carefully?
Is some progress on it possible in near future?
What I need exactly now is to check the code itself by httpd folk. (The
decision where it should be hosted can be delayed...)
Regards,
Dmitry Butskoy
http://www.fedoraproject.org/wiki/DmitryButskoy
