On Thu, 28 Mar 2002, Larry Osterman wrote:
> I'm pushing once again on the RFC for NTLM, I don't know if anything > happens on that front, but I'm pushing again. The comment I've heard, from Paul Leach among others, is that there is no interest in documenting NTLM (absolutely not NTLMv1, probably not NTLMv2) because, as you note, it's considered to be the bad old proprietary format that should be got rid of in favor of standards-compliant Kerberos and X.509-based stuff. This would be a more effective argument if it were possible to run a reasonably full suite of Microsoft applications (clients and servers) without being obliged to support NTLM authentication. It's my understanding that even with the latest versions of platforms and application packages this is still not the case. - RL "Bob"
