NTLM HTTP Authentication is insecure by design
►http://www.webappsec.org/lists/websecurity/archive/2005-07/msg00006.html
This write-up discusses a problem inherent to the situation of a connection-oriented authentication - authorization protocol (e.g. NTLM authentication) used with a proxy server that shares TCP connections among several clients
#NTLM #réseau #sécurité #faille #protocole #windows #microsoft #samba #sso #groupe:clever-age