2007
NTLM HTTP Authentication is insecure by design
by nhoizeyThis write-up discusses a problem inherent to the situation of a connection-oriented authentication - authorization protocol (e.g. NTLM authentication) used with a proxy server that shares TCP connections among several clients
The NTLM Authentication Protocol
by nhoizeyThis article seeks to describe NTLM at an intermediate to advanced level of detail, suitable as a reference for implementors.
SPNEGO - JA-SIG Wiki
by nhoizeyThis is the implementation of an AuthenticationHandler for SPNEGO supports. This Handler support both NTLM and Kerberos. NTLM is disabled by default.
cas-fr - Re: [cas-fr] SSO/CAS authentification sur plusieurs attributs
by nhoizeyL'authentification X509 est opérationnelle (mais pas forcément très bien packagée), elle sera normalement dans CAS 3.0.6. On y trouvera également Radius et SPNEGO (donc NTLM).
2005
1
(5 marks)