HTTP Digest Authentication Problems (K 3.2.3/Apache 2.0.50)

Sean Lynch lynch30 at marshall.edu
Tue Aug 24 00:34:59 BST 2004


On Monday 23 August 2004 07:06 pm, Karsten Künne wrote:
> On Monday 23 August 2004 17:05, Sean Lynch wrote:
> > Firefox works with it, for what its worth.
> >
> > Sean
>
> Are you sure firefox uses "Negotiate" authentication? I tried to access
> this site with firefox and it used "NTLM", not "Negotiate"! The "Negotiate"
> was rejected because the default preference for "Negotiate" is that it
> requires "https://". After I changed that preference it tried to use
> "Negotiate" but it failed because it tried to find the kerberos principal
> for the server and then it fell back to "NTLM" and finally it blew up with
> a SEGV (apparently some bug in the negotiateauth extension). Try to run
> firefox with
> "NSPR_LOG_MODULES=nsHttp:5" and "NSPR_LOG_FILE=logfile.log" set and check
> for the response firefox sends back to the server, it probably contains
> something like:
>
> ....
> Cookie: ASPSESSIONIDQASBBTTA=PHJOBABCPMFCIPIGEBBGPOAL
> Authorization: NTLM ********************************************
>
> NTLM authentication is not implemented in the http kioslave and I have no
> intention to implement it.
>
>

I'm sorry. I was just saying that the page was usable with firefox, I do not 
know anything of its authentication method.

Sean




More information about the kfm-devel mailing list