On Wed, 3 Aug 2005, Kinkie wrote:
With max_challenge_reuse set to anything but 0, squid will perform a replay attack on the NTLM authentication to increase authentication performance. Everything should work more or less fine (if you see failed auths you may want to enable the helper-fail-open config option and helper flag - be warned that doing so is a security compromise).
Except that there appears to still be some Squid stability issues with NTLM Challenge-Reuse enabled.
Regards Henrik
