* Raymond Leach wrote on Mon, Jan 27, 2003 at 16:02 +0200:
Squid supports authentication via helper programs. I'm sure if you look hard enough on the net you can find one that will do SMB (windows) authentication.
I don't think that this was the question. He told, the authentication works, but the users needs to reenter the password. Well, and maybe the users enter their windows password in the standard proxy authentication window with basic authentication - which is transmitted in clear text - even worse, now there is no need to attack a DC server but a simple traffic logger can retrieve passwords (you may take a loot at http://sws.dett.de/squid-IP_AUTH.shtml for details ;)). Anyway, I cannot answer the question, but I would recommended not to try so. If a browser can get such important information, browser attacks like XSS and such would become much more efficient (but maybe Windows even supports such insecure doing :)). I would better look how this could be prevented and I suggest not to transfer such sensitive information in clear to the proxy. oki, Steffen -- Dieses Schreiben wurde maschinell erstellt, es trägt daher weder Unterschrift noch Siegel.