tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Greg.C...@pfizer.com
Subject RE: Some JK2 ideas
Date Mon, 19 Jul 2004 17:01:20 GMT


> -----Original Message-----
> From: Jess Holle [mailto:jessh@ptc.com]

> 
> Unfortunately, some have drank too much Microsoft Kool-Aid.
> 
> A good number desparately want NTLM-based authentication.  [They like 
> the single-sign on for Windows clients, but they love the notion of 
> better security than clear-text name/password, etc, without having to 
> buy a server certificate or use HTTPS on their intranet.]  If 
> Apache 2 
> had a stable module for this (whether or not it was from the ASF 
> itself), I would think this would be a good step to get these folk to 
> shift to Apache.

But does NTLM not work over proxies?  ..... great on a flat LAN, but not a
good idea anywhere else.

If you need to secure the logon do you not need to secure the content as
well?

OT I know.  NTLM is one of my pet hates.

Greg



> 
> --
> Jess Holle
> 
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: tomcat-dev-unsubscribe@jakarta.apache.org
> For additional commands, e-mail: tomcat-dev-help@jakarta.apache.org
> 
> 

---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-dev-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-dev-help@jakarta.apache.org


Mime
View raw message