On 08/22/2014 10:46 PM, Klara Mall wrote: > I'm not sure, if I got this. In my patch $challenge is > set/calculated before $user is changed by the RewriteFunction. But I > put the RewriteFunction at the same position as the > UsernameMatchesWithoutRealm rewriting. So I thought this is okay. > Isn't it?
It's fine. What I was thinking was that if someone wants to try passing a rewritten username to AuthBy NTLM, they would need to be careful about what they rewrite and at which point. Thanks, Heikki -- Heikki Vatiainen <[email protected]> Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP, DIAMETER etc. Full source on Unix, Windows, MacOSX, Solaris, VMS, NetWare etc. _______________________________________________ radiator mailing list [email protected] http://www.open.com.au/mailman/listinfo/radiator
