victor wrote: > From the article it sgugest disableing the feature will plug the hole, > I think the NTLM handler is not enabled by default correct? If I didn't > complie with NTLM handler enabled, does it mean I'm safe?
Even if NTLM support is enabled, if you are not using NTLM auth in your squid.conf, then you won't be vulnerable, as it won't be running. Adam
