On Wed, 15 Sep 2004, Lars Roland wrote:
I have googled a bit around and the most answars I found, is that setting up squid to authenticate using ntlm, combinded with a transparent proxy is not possible - is this true ?
Proxy authentication REQUIRES the browser to be configured to use a proxy, if not the browser MUST (per the HTTP standard) refuse to participate in any such authentication requests.
And if you look on this from a security perspective it is obvious this must be the case as the browser has no way of knowing or even less identifying the proxy when you transparently hijack the browsers requests and sends them to the proxy instead of the origin web server as requested by the browser.
Regards Henrik
