25 October 2007
NTLM HTTP Authentication is insecure by design
by nhoizey
This write-up discusses a problem inherent to the situation of a connection-oriented authentication - authorization protocol (e.g. NTLM authentication) used with a proxy server that shares TCP connections among several clients
08 October 2007
SPNEGO - JA-SIG Wiki
by nhoizey
This is the implementation of an AuthenticationHandler for SPNEGO supports. This Handler support both NTLM and Kerberos. NTLM is disabled by default.
cas-fr - Re: [cas-fr] SSO/CAS authentification sur plusieurs attributs
by nhoizey
L'authentification X509 est opérationnelle (mais pas forcément très bien packagée), elle sera normalement dans CAS 3.0.6. On y trouvera également Radius et SPNEGO (donc NTLM).
NTLM GET LOGIN WINDOWS WITH PHP , Source N°25272
by nhoizey
Récuperation du login NTLM en php pour une identification de l'user automatique.
NTLM - Central Authentication Service - JA-SIG Wiki
by nhoizey
SAMBA has a Java JAR that performs the NTLM challenge dialog from a Servlet. It runs as a Servlet Filter in front of an application. If the remote user pass the challenge, the userid is stored in the Request block when the CAS Servlet begins processing
1
(5 marks)
