cURL / Mailing Lists / curl-library / Single Mail

curl-library

Re: NTLM state in connections is too strict?

From: Daniel Stenberg <daniel_at_haxx.se>
Date: Fri, 4 Jan 2013 22:25:48 +0100 (CET)

On Fri, 4 Jan 2013, Joe Mason wrote:

> NTLM (bleah) is a connection-oriented auth protocol

...

> If a 401 with an NTLM header is ever received on that connection again, curl
> will fail the authentication again immediately:

The only real reason for this that I can think of is that it a fairly crude
way to detect when wrong credentials are used, as then the server will just
send another 401 back.

If a 401 can also mean "re-negotiate" we need a smarter way to detect the
difference between wrong credentials and just start over the handshaking...

-- 
  / daniel.haxx.se
-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette:  http://curl.haxx.se/mail/etiquette.html

Received on 2013-01-04

This message: [ Message body ]
Next message: Daniel Stenberg: "Re: Report on SSL cipher being used"
Previous message: Daniel Stenberg: "Re: Equivalent of -U :"
In reply to: Joe Mason: "NTLM state in connections is too strict?"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]