I just discovered a piece of software called Cntlm that allows a UNIX/Linux platform to get access to the Internet via Windows proxy services.
For a long time now, I thought that the only solution to accessing the Internet through a Windows-based proxy from a UNIX/Linux platform was to use a service called NTLMAPS.
This software would act as a proxy itself, but get its Internet feed from a connection that it makes to a Windows proxy. You can give it the credentials for authentication that you use for a Windows desktop and it uses those to authenticate against the proxy.
Cntlm does the same job as NTLMAPS, but seems to be faster and also support NTLMv2 authentication. One of my gripes with NTLMAPS was that I couldn't put in a sufficiently complex password. The password also has to be specified at runtime or in cleartext within a configuration file. Cntlm fixes this by allowing hashes to be generated from password which can then be put in the configuration file. Depending on how fussy your ISA server is, you may need to masquerade the Workstation that you're authenticating from.
I'd been trying out Cntlm on Fedora 13 (it's in the repos), but have now moved on to trying it on AIX. There's a tar.gz bundle that can be downloaded from the project site. Extracting it gives you a sample config file, binary, and man page - no RPM or bff, unfortunately. When it's run, it drops into the background, so you don't have to worry about using & to send it to the background. It will just need to be killed if you want to stop it running.
The package is marked as "aix5", but I've been testing it on AIX 6.1 without any trouble so far.
with Tags: proxy X
MarkChandler 2700034QTX Tags:  cntlm ntlmv2 linux windows aix ntlmaps proxy isa fedora 3 Comments 2,559 Visits