Sent: Monday, April 29, 2002 7:29 AM
To: [EMAIL PROTECTED]
Subject: Re: [DOTNET] AW: [DOTNET] Windows authentication and Netscape -
How Digest Auth works
John,
IMO, The system running XP/ IIS5.1 needs to be a member of an Windows
.NET Server domain, in order to use the DigestSSP
(Advanced D
- Original Message -
From: "John Lam" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday, April 29, 2002 12:20 AM
Subject: Re: [DOTNET] AW: [DOTNET] Windows authentication and Netscape - How Digest
Auth works
This is only true in pre-XP implementations. In Wind
I hadn't checked but I suspected
> -Original Message-
> From: dotnet discussion [mailto:[EMAIL PROTECTED]]On Behalf Of
> Dominick Baier
> Sent: Sunday, April 28, 2002 5:32 PM
> To: [EMAIL PROTECTED]
> Subject: [DOTNET] AW: [DOTNET] AW: [DOTNET] Windows authenticati
EMAIL PROTECTED]
Betreff: Re: [DOTNET] AW: [DOTNET] Windows authentication and Netscape -
How Digest Auth works
This is only true in pre-XP implementations. In Windows XP, Digest
Authentication is implemented as a Security Support Provider (SSP).
Under XP, the IIS 5.1 web server does not need to run
;t
released yet).
-John
http://www.iunknown.com
-Original Message-
From: Dominick Baier [mailto:[EMAIL PROTECTED]]
Sent: Sunday, April 28, 2002 5:34 PM
To: [EMAIL PROTECTED]
Subject: [DOTNET] AW: [DOTNET] Windows authentication and Netscape - How
Digest Auth works
Hi,
to clear thin
discussion [mailto:[EMAIL PROTECTED]]Im Auftrag von
Brad Wilson
Gesendet: Sonntag, 28. April 2002 22:59
An: [EMAIL PROTECTED]
Betreff: Re: [DOTNET] Windows authentication and Netscape
Reggie Burnett wrote:
> Digest auth is a web server function. Why in the world would it require a
> d
Reggie Burnett wrote:
> Digest auth is a web server function. Why in the world would it require a
> domain controller?
IIRC, I believe that digest authentication is tied to an Active Directory.
The typical way to get secure logins for non-IE is basic auth inside HTTPS.
Brad
--
Read my web log
> It does a challenge/response. However, digest authentication will
> only work
> for IIS installed on a domain controller (of all things ...). Most people
> consider opening up their domain controllers to the internet a bad thing
> (allthough it is getting increasinly trendy to proxy the internal
authentication and Netscape
> Hi,
> thats not right - IIS has to be a domain member - not controller - however
> you have to specify "use reversible hash" in Active Directory which poses
a
> possible security risk.
>
Duh. Sure, please read this as "installed in a domain&quo
> Hi,
> thats not right - IIS has to be a domain member - not controller - however
> you have to specify "use reversible hash" in Active Directory which poses
a
> possible security risk.
>
Duh. Sure, please read this as "installed in a domain". My bad. The point
stays though that you don't want
poses a
> possible security risk.
>
> greets
> dominick baier
> ernw
>
> -Ursprüngliche Nachricht-
> Von: dotnet discussion [mailto:[EMAIL PROTECTED]]Im Auftrag von
> Henk de Koning
> Gesendet: Freitag, 26. April 2002 20:50
> An: [EMAIL PROTECTED]
>
baier
ernw
-Ursprüngliche Nachricht-
Von: dotnet discussion [mailto:[EMAIL PROTECTED]]Im Auftrag von
Henk de Koning
Gesendet: Freitag, 26. April 2002 20:50
An: [EMAIL PROTECTED]
Betreff: Re: [DOTNET] Windows authentication and Netscape
> Basic Authentication is cleartext,
But can be secured o
ess Consultant
ConnectWise, Inc.
813-935-7100 x 425
> -Original Message-
> From: Srinivasa Sivakumar [mailto:[EMAIL PROTECTED]]
> Sent: Friday, April 26, 2002 3:44 PM
> To: [EMAIL PROTECTED]
> Subject: Re: [DOTNET] Windows authentication and Netscape
>
>
> Not
Not very secure. Pls. read the spec from W3C.
- Original Message -
From: "Bryan Batchelder" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Friday, April 26, 2002 1:12 PM
Subject: Re: [DOTNET] Windows authentication and Netscape
Basic Authentication i
> Basic Authentication is cleartext,
But can be secured on the channel level (e.g. using https). Asuming you
periodically change your passwords this is good enough most of the times.
Digest is cryptographically secure,
> IIRC.
It does a challenge/response. However, digest authentication will on
5 PM
> To: [EMAIL PROTECTED]
> Subject: Re: [DOTNET] Windows authentication and Netscape
>
>
> Matt:
>
> Netscape supports Basic and Digest authentications not the
> Integrated Windows Authentication.
>
> When you specify authentication mode as "Window
om/webguru/
- Original Message -
From: "Matt Milner" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Friday, April 26, 2002 10:34 AM
Subject: Re: [DOTNET] Windows authentication and Netscape
not sure if this was already answered, but no, Netscape did not support
Wi
r [mailto:[EMAIL PROTECTED]]
> Sent: 26 April 2002 16:35
> To: [EMAIL PROTECTED]
> Subject: Re: [DOTNET] Windows authentication and Netscape
>
>
> not sure if this was already answered, but no, Netscape did
> not support Windows authentication last time I checked. This
> is an IE o
not sure if this was already answered, but no, Netscape did not support
Windows authentication last time I checked. This is an IE only thing.
-Original Message-
From: Chris Anderson
To: [EMAIL PROTECTED]
Sent: 4/26/02 3:46 AM
Subject: [DOTNET] Windows authentication and Netscape
I&#
I'm using Windows Authentication mode, ie
and alls well in IE6
I try to see what the site will look like in Netscape (I just wanted to see
what the IE WebControls looked like when not using DHTML behaviours), and I
get t
20 matches
Mail list logo
