On tor, 2007-09-27 at 11:45 +0200, Markus.Rietzler@xxxxxxxxxxxxxx wrote: > one more question: in squid.conf i can set "keep_alive off" (also for > ntlm_auth). > if keep-alive is a must for NTLM challenge response, then what > "keep_alive off" means? > that would contractict the "must"...??? NTLM is complex... The keep-alive auth_param option controls the response to the initial request before the client even tries to use NTLM. Some clients require the connection to be closed here to work proper. This parameter controls only that case, nothing else. NTLM then requires a persistent connection for the two requests carrying the NTLM actual handshake (request 2 & 3 or a full NTLM sequence). This requires the client to signal keep-alive support via Proxy-Connection: keep-alive (Connection: keep-alive also works). This is automatically done even if client_persitent_connections is set to off. Regards Henrik
Attachment:
signature.asc
Description: This is a digitally signed message part
