by fineman » Nov 02 16 12:49 am
Just to be clear, what I'm looking to configure is what I've read as the correct behaviour of an NTLM authenticating proxy - that each new connection should be authenticated, but that connections kept-alive via 'keep-alive' should not need to re-authenticate when subsequent requests are sent over the same connection. As it stands now, once the first connection authenticates I can do anything I like on the client PC - all internet clients (browsers, other processes like Evernote sync etc) all pass through the proxy unchallenged which seems to me wrong.