On Tue, Mar 5, 2013 at 9:45 PM, Anton <anto...@gmx.de> wrote: > Hmmm > > the bad support (as you mention "it hasn't been updated in quite some time") > seems to be a major problem in this domain.
The NTLM/SSPI protocols haven't changed in a long time. Why should the projects that support this tech need 'activity' on something that works? > > I just looked at (for apache) > http://mod-auth-sspi.sourceforge.net/docu/mod_ntlm/ > > Here they say mod_ntlm is obsolete and > " mod_auth_sspi is the version of mod_ntlm for Apache-2.0" > > but on the other side mod_auth_sspi seems to be dead too, Indeed. There is more to life as an apache module than authentication, in Apache 2.2 there is optionally authorization, and in 2.4 there is no 'optional' about it. So mod_auth_sspi will never exist for Apache 2.4. Instead, there is (alpha) mod_authnz_sspi https://www.apachehaus.net/modules/mod_authnz_sspi/ which seems to be supplied as a binary module, with no source code... > so actually I am still not sure if its possible, > if you don't want to use pure Microsoft technologies > (like asp.net IIS server & other tools from ms) > > I am looking ...... > The software you want is not compatible with your choice of web server. The way I see it, you have four choices: 1) Use Apache 2.2 and mod_auth_sspi 2) Use Apache 2.4, port mod_auth_sspi to Apache 2.4 3) Use Apache 2.4, use binary mod_authnz_sspi, live with the security issues 4) Continue looking! Cheers Tom -- You received this message because you are subscribed to the Google Groups "Django users" group. To unsubscribe from this group and stop receiving emails from it, send an email to django-users+unsubscr...@googlegroups.com. To post to this group, send email to django-users@googlegroups.com. Visit this group at http://groups.google.com/group/django-users?hl=en. For more options, visit https://groups.google.com/groups/opt_out.
