After last firefox update the NTLM auth do not work anymore.
I have download the previous version of FF from Fedora old repo (firefox-29.0.1-1.fc20.x86_64.rpm) and install it: NTLM auth work.
(NOTE: "yum downgrade firefox" do not work with this error)
Resolving Dependencies --> Running transaction check ---> Package firefox.x86_64 0:25.0-3.fc20 will be a downgrade --> Processing Dependency: libxul.so(xul25.0)(64bit) for package: firefox-25.0-3.fc20.x86_64 ---> Package firefox.x86_64 0:30.0-4.fc20 will be erased --> Processing Conflict: firefox-25.0-3.fc20.x86_64 conflicts xulrunner(x86-64) > 25.1 --> Finished Dependency Resolution Error: firefox conflicts with xulrunner-30.0-1.fc20.x86_64
I have also download FF from FF web site and the problem is the same: FF30 do not work, FF 29 work.
Some suggest ?
Thanks
On 06/16/14 17:15, Dario Lesca wrote:
After last firefox update the NTLM auth do not work anymore.
I have download the previous version of FF from Fedora old repo (firefox-29.0.1-1.fc20.x86_64.rpm) and install it: NTLM auth work.
(NOTE: "yum downgrade firefox" do not work with this error)
Resolving Dependencies --> Running transaction check ---> Package firefox.x86_64 0:25.0-3.fc20 will be a downgrade --> Processing Dependency: libxul.so(xul25.0)(64bit) for package: firefox-25.0-3.fc20.x86_64 ---> Package firefox.x86_64 0:30.0-4.fc20 will be erased --> Processing Conflict: firefox-25.0-3.fc20.x86_64 conflicts xulrunner(x86-64) > 25.1 --> Finished Dependency Resolution Error: firefox conflicts with xulrunner-30.0-1.fc20.x86_64
I have also download FF from FF web site and the problem is the same: FF30 do not work, FF 29 work.
Some suggest ?
One thing you can try.....
In FF30 they seem to have added a new parameter network.negotiate-auth.allow-insecure-ntlm-v1 to "about:config". By default it is set to "false". Try setting it to true.
Il giorno lun, 16/06/2014 alle 17.54 +0800, Ed Greshko ha scritto:
One thing you can try.....
In FF30 they seem to have added a new parameter network.negotiate-auth.allow-insecure-ntlm-v1 to "about:config". By default it is set to "false". Try setting it to true.
I love this kind of suggest because it solve the problem.
With this setting to true, the NTLM of FF30 work again
Many Thanks
-- Do not condemn the judgment of another because it differs from your own. You may both be wrong. -- Dandemis
On 06/16/14 18:33, Dario Lesca wrote:
I love this kind of suggest because it solve the problem.
With this setting to true, the NTLM of FF30 work again
Many Thanks
You're welcome.
This setting does seem to indicate that if you have control over the other system you should update it to run v2 which is considered more secure.
Il giorno lun, 16/06/2014 alle 20.39 +0800, Ed Greshko ha scritto:
You're welcome.
This setting does seem to indicate that if you have control over the other system you should update it to run v2 which is considered more secure.
The server to which I connect and use the NTLM V1 is a MS Intranet web server, and I do not have control on it, I'm a simple user only.
I do not know how to migrate to v2 protocol.
Thanks
*Security* *NTLMv1 auth has been disabled, NTLM support on non-Windows platforms is now deprecated*
- Bug 828183 ? Firefox enables insecure NTLM (pre-NTLMv2) authentication https://bugzilla.mozilla.org/show_bug.cgi?id=828183 - Bug 999306 ? Allow generic NTLM v1 if pref set https://bugzilla.mozilla.org/show_bug.cgi?id=999306 - Bug 1023748 ? Allow NTLMv1 over SSL/TLS, or intranet access is broken on Firefox 30 for non-Windows platforms https://bugzilla.mozilla.org/show_bug.cgi?id=1023748
The support for the NT LAN Manager version 1 (NTLMv1) network authentication has been disabled because it's known as insecure. Companies and organizations still deploying the older protocol should upgrade to NTLMv2. See Honza Bambas' blog post http://www.janbambas.cz/ntlm-v1-and-firefox/ and Jason Duell's post to the dev-planning list https://groups.google.com/d/topic/mozilla.dev.planning/JbrpDmqDLXI for details. This is affecting SharePoint-based or IIS-backed intranet applications. If you encounter any problems on Firefox 30 or later, you can manually enable NTLMv1 using a preference. Note that NTLMv2 is not supported on non-Windows platforms, so OS X and Linux users have to toggle the preference to continue using NTLMv1 as below, though the NTLM auth support on non-Windows platforms is considered deprecate d. How to enable NTLMv1: type about:config in the location bar, click the "I'll be careful" button, find network.negotiate-auth.allow-insecure-ntlm-v1, double-click on it to change the value to true.
You can check to see if NTLMv2 is enabled using the following: https://www.imss.caltech.edu/node/395
On Mon, Jun 16, 2014 at 9:15 AM, Dario Lesca d.lesca@solinos.it wrote:
After last firefox update the NTLM auth do not work anymore.
I have download the previous version of FF from Fedora old repo (firefox-29.0.1-1.fc20.x86_64.rpm) and install it: NTLM auth work.
(NOTE: "yum downgrade firefox" do not work with this error)
Resolving Dependencies --> Running transaction check ---> Package firefox.x86_64 0:25.0-3.fc20 will be a downgrade --> Processing Dependency: libxul.so(xul25.0)(64bit) for package:
firefox-25.0-3.fc20.x86_64
---> Package firefox.x86_64 0:30.0-4.fc20 will be erased --> Processing Conflict: firefox-25.0-3.fc20.x86_64 conflicts
xulrunner(x86-64) > 25.1
--> Finished Dependency Resolution Error: firefox conflicts with xulrunner-30.0-1.fc20.x86_64
I have also download FF from FF web site and the problem is the same: FF30 do not work, FF 29 work.
Some suggest ?
Thanks
-- Dario Lesca (inviato dal mio Linux Fedora 20 con Gnome 3.10.4)
-- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines Have a question? Ask away: http://ask.fedoraproject.org
-
Dario Lesca -
Ed Greshko -
Edik Landaveri