Hi,
At 16.24 18/04/2006, Holton, Euan wrote:
>Good afternoon fellow Squid-users
>
>I'm currently running Squid 2.5STABLE13-NT on Windows 2000, and I get a
>fair number of these messages in cache.log:
>
>ntlm-auth[4176]: sending 'NA Incorrect Request Format' to squid
>
>Would I be correct in assuming that these messages are caused by
>incorrect client requests, as other than these messages NTLM
>authentication works well? If so, is there any debug level I can set
>via debug_options or even some other way to try and trace down what the
>offending clients are so I can go fix them? Turning on the -d setting
>for ntlm-auth doesn't really provide a great deal of information as to
>who it could be:
>
>ntlm-auth[1864]: attempting SSPI challenge retrieval
>ntlm-auth[1864]: Got it
>ntlm-auth[1864]: sending 'TT *some stuff that might be a hash*' to squid
>ntlm-auth[1864]: Got 'KK *some more hash-like stuff*' from Squid
>ntlm-auth[1864]: No domain supplied. Returning no-auth
>ntlm-auth[1864]: sending 'NA Incorrect Request Format' to squid
This response from the helper is clear:
There is an NTLM authentication request without domain, but the
domain field is mandatory for NTLM authentication with the current
ntlm-auth.exe helper.
Some of your client is sending user credentials without domain, may
be local users or a machine not member of the Windows domain.
Regards
Guido
-
========================================================
Guido Serassio
Acme Consulting S.r.l. - Microsoft Certified Partner
Via Lucia Savarino, 1 10098 - Rivoli (TO) - ITALY
Tel. : +39.011.9530135 Fax. : +39.011.9781115
Email: guido.serassio@acmeconsulting.it
WWW: http://www.acmeconsulting.it/
Received on Tue Apr 18 2006 - 13:58:57 MDT
This archive was generated by hypermail pre-2.1.9 : Mon May 01 2006 - 12:00:02 MDT