[squid-users] NTLM Authentication / Centos 7
L.P.H. van Belle
belle at bazuin.nl
Tue Aug 21 07:09:36 UTC 2018
> Also, what then do the other lines in your config then say to do with
> the NTLM type-1 requests (no credentials) and failed-login requests?
No this happend after the last security update of samba.
This is due to a samba update.
SECURITY UPDATE: Weak authentication protocol allowed
CVE-2018-1139-*.patch: Do not allow ntlmv1 over SMB1
You can easily test this, add 'ntlm auth = yes' to smb.conf and
restart. If this cures your problem, then you have two choices, leave
it alone and put up with a possibly insecure server, or fix your
clients to only use NTLMv2 and remove the line from smb.conf.
More information about the squid-users