> Then how does squid define whether a current http-request > belongs to an authorized user or not? In HTTP authentication > scheme each http-request contains username|password, which > help squid (or authentication helper) to identify user.
Once the _connection_ has been authenticated via NTLM, multiple requests can be sent over the authenticated connection. It's different from http authentication where the _request_ contains the credentials. ~ Daniel ----------------------------------------------------------------------- This message is the property of Time Inc. or its affiliates. It may be legally privileged and/or confidential and is intended only for the use of the addressee(s). No addressee should forward, print, copy, or otherwise reproduce this message in any manner that would allow it to be viewed by any individual not originally listed as a recipient. If the reader of this message is not the intended recipient, you are hereby notified that any unauthorized disclosure, dissemination, distribution, copying or the taking of any action in reliance on the information herein is strictly prohibited. If you have received this communication in error, please immediately notify the sender and delete this message. Thank you.
