Hi,
At 16.24 18/04/2006, Holton, Euan wrote:
Good afternoon fellow Squid-users
I'm currently running Squid 2.5STABLE13-NT on Windows 2000, and I get a
fair number of these messages in cache.log:
ntlm-auth[4176]: sending 'NA Incorrect Request Format' to squid
Would I be correct in assuming that these messages are caused by
incorrect client requests, as other than these messages NTLM
authentication works well? If so, is there any debug level I can set
via debug_options or even some other way to try and trace down what the
offending clients are so I can go fix them? Turning on the -d setting
for ntlm-auth doesn't really provide a great deal of information as to
who it could be:
ntlm-auth[1864]: attempting SSPI challenge retrieval
ntlm-auth[1864]: Got it
ntlm-auth[1864]: sending 'TT *some stuff that might be a hash*' to squid
ntlm-auth[1864]: Got 'KK *some more hash-like stuff*' from Squid
ntlm-auth[1864]: No domain supplied. Returning no-auth
ntlm-auth[1864]: sending 'NA Incorrect Request Format' to squid
This response from the helper is clear:
There is an NTLM authentication request without domain, but the
domain field is mandatory for NTLM authentication with the current
ntlm-auth.exe helper.
Some of your client is sending user credentials without domain, may
be local users or a machine not member of the Windows domain.
Regards
Guido
-
========================================================
Guido Serassio
Acme Consulting S.r.l. - Microsoft Certified Partner
Via Lucia Savarino, 1 10098 - Rivoli (TO) - ITALY
Tel. : +39.011.9530135 Fax. : +39.011.9781115
Email: guido.serassio@xxxxxxxxxxxxxxxxx
WWW: http://www.acmeconsulting.it/
