Currently all users are authenticated before accessing the Internet by using LDAP with Squid to the AD server. We're concerned about the browser sending the login/pass to the Squid server unencrypted (base64).
Would using NTLM or winbind authentication with Squid avoid the password-in-the-clear problem? If not, does anyone have another suggestion for this problem? Thanks, ~Matt -- Get Firefox! http://www.mozilla.org/products/firefox/
