There is a bug in new FF regarding kerberos auth. May be, that matters:
https://bugzilla.mozilla.org/show_bug.cgi?id=857291
Regarding:
http://wiki.squid-cache.org/action/show/Features/Authentication#Can_I_use_different_authentication_mechanisms_together.3F
It states:
>Due to a bug in common Use
AFAIK FF uses the first auth scheme presented. IE (and Chrome ?) use the
"safest" method.
So, assuming, you want "Negotiate" first to appear in the headers, I would
consider this a typical case for a site specific "Brutal Hack" of the squid
sources.
Regarding FF, it is possible to mess around wi