[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Bug-wget] [PATCH] NTLM restart authentication

From: Tim Rühsen
Subject: Re: [Bug-wget] [PATCH] NTLM restart authentication
Date: Sat, 29 Dec 2018 17:52:59 +0100
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.4.0

On 29.12.18 11:55, André Wolski wrote:
> Hello,
> about two years ago I had to create a static archive of a large
> intranet site (SharePoint / IIS 7.0 with NTLM authentication) with an
> unprivileged user. I then noticed that a lot of pages / files haven't
> been downloaded.
> Digging into that I found out that after a legitimate 401 Unauthorized
> for a single url (e.g. useredit.aspx) all following requests were
> failing too. The server tried to initiate a reauthentication, but wget
> failed with "Unexpected empty NTLM message" as it remained in the
> failed state.
> I learned that wgets ntlm implementation is based on curl, so I
> compared both source files. curl resolved the issue I had in their
> commit fe6049f [1]. There is also a related prior commit 50b87c4 [2].
> I then manually applied these two changes for wget and was able to
> mirror the intranet site and noticed no drawbacks.
> Unfortunately I didn't send the patch here at that time but was
> reminded of it when I replaced my client hardware. Given that the said
> intranet server is now decommissioned I can no longer perform any
> tests with it. I also didn't look into the "make check" tests to
> recreate the problem I had.
> From what I read in the meantime development of wget continued with
> wget2, which has no NTLM support, so I don't know if it makes sense to
> merge this patch into wget1. I just want to send the patch to you as
> others might have the same problem.
> As the picked commits come from curl I don't know the legal
> implications / licence compatibility. Also, there are a lot more
> changes in curls ntlm implementation which I didn't look into.

Thanks, André.

Since it is a trivial change, there shouldn't be any legal issues.

But anyways, I would like to ask Daniel Stenberg if he agrees if that
copy of code is being copyrighted by the FSF. Only if he agrees, I would
add this patch. That is just a matter of politeness and correctness.

The commit message would explain it's origins.

@Daniel Are you ok for us to add the code under FSF Copyright ?

Regards, Tim

> Kind regards,
> André Wolski
> [1] 
> https://github.com/curl/curl/commit/fe6049f04bf7eb0481ba030c0e78aae5cfd0209f
> [2] 
> https://github.com/curl/curl/commit/50b87c4e689088fc3ddcf2fac163b75f839ef69a

Attachment: signature.asc
Description: OpenPGP digital signature

reply via email to

[Prev in Thread] Current Thread [Next in Thread]