hc-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From DaddyWri <...@git.apache.org>
Subject [GitHub] httpclient issue #66: CredSSP implementation, NTLM engine reworked
Date Fri, 17 Mar 2017 10:55:34 GMT
Github user DaddyWri commented on the issue:

    Started working on the tests.  Did the following:
    (1) Changed CipherGen so that it accepts a Random and long time value as arguments, so
that tests can be made repeatable;
    (2) Added packet byte value checks to be sure that the Type1 and Type3 responses don't
change without us knowing.
    Still to do: test NTLM fetch against an IIS-protected file, any Windows version,  This
is necessary because the flags that are included now in the Type3Message are now the entire
set of flags that come back in the Type2Message.  This might be correct as far as I know because
when I implemented it year ago there was no description of what the Type3Message flags field
should contain.  @semancik, when you said you "tried this against multiple Windows versions",
did you try a straightforward NTLM file fetch to confirm that this still works?
    If you haven't, and you would like to try this, you can check out the code at:
    Please build and try it out, and let me know.  I no longer have ready access to a Windows
system with IIS running, which limits my ability to exercise this code.

If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at infrastructure@apache.org or file a JIRA ticket
with INFRA.

To unsubscribe, e-mail: dev-unsubscribe@hc.apache.org
For additional commands, e-mail: dev-help@hc.apache.org

View raw message