users using NT/LM authentication. It returns 0 if the users is authenticated
successfully and 1 if access was denied. ntlm_auth uses winbind to access
the user and authentication data for a domain. This utility
- is only indended to be used by other programs (currently
+ is only intended to be used by other programs (currently
<ulink url="http://www.squid-cache.org/">Squid</ulink>
and <ulink url="http://download.samba.org/ftp/unpacked/lorikeet/trunk/mod_ntlm_winbind/">mod_ntlm_winbind</ulink>)
</para>
could cause the helper to authenticate the
user). </para>
- <para>Curently implemented parameters from the
+ <para>Currently implemented parameters from the
external program to the helper are:</para>
<variablelist>
<varlistentry>
</listitem></varlistentry>
<varlistentry>
- <term>Username</term>
+ <term>NT-Domain</term>
<listitem><para>The user's domain, expected to be in
Samba's <smbconfoption name="unix charset"/>.
</para>
- <para><example>Domain: WORKGROUP</example></para>
- <para><example>Domain:: V09SS0dST1VQ</example></para>
+ <para><example>NT-Domain: WORKGROUP</example></para>
+ <para><example>NT-Domain:: V09SS0dST1VQ</example></para>
</listitem></varlistentry>
<varlistentry>
MSCHAPv2) generated in some way by both the server and
the client.
</para>
- <para><example>LANMAN-Challege: 0102030405060708</example></para>
+ <para><example>LANMAN-Challenge: 0102030405060708</example></para>
</listitem></varlistentry>
<varlistentry>
<varlistentry>
<term>Request-User-Session-Key</term>
- <listitem><para>Apon sucessful authenticaiton, return
+ <listitem><para>Upon successful authenticaiton, return
the user session key associated with the login.
</para>
<para><example>Request-User-Session-Key: Yes</example></para>
<varlistentry>
<term>Request-LanMan-Session-Key</term>
- <listitem><para>Apon sucessful authenticaiton, return
+ <listitem><para>Upon successful authenticaiton, return
the LANMAN session key associated with the login.
</para>
<para><example>Request-LanMan-Session-Key: Yes</example></para>
</listitem></varlistentry>
- <para><warning>Implementors should take care to base64 encode
+ <para><warning>Implementers should take care to base64 encode
any data (such as usernames/passwords) that may contain malicous user data, such as
a newline. They may also need to decode strings from
the helper, which likewise may have been base64 encoded.</warning></para>
<varlistentry>
<term>--request-lm-key</term>
- <listitem><para>Retreive LM session key</para></listitem>
+ <listitem><para>Retrieve LM session key</para></listitem>
</varlistentry>
<varlistentry>
<title>TROUBLESHOOTING</title>
<para>If you're experiencing problems with authenticating Internet Explorer running
- under MS Windows 9X or Millenium Edition against ntlm_auth's NTLMSSP authentication
+ under MS Windows 9X or Millennium Edition against ntlm_auth's NTLMSSP authentication
helper (--helper-protocol=squid-2.5-ntlmssp), then please read
<ulink url="http://support.microsoft.com/support/kb/articles/Q239/8/69.ASP">
the Microsoft Knowledge Base article #239869 and follow instructions described there</ulink>.