Donc en gros, tant que je ne rencontre pas de problèmes de navigation,
le mieux est de ne rien faire, comme dit Lao-Tse?
Mais comment je saurais que le problème de navigation que je
rencontrerais éventuellement est lié à NTLM-v1?
On 21/10/2014 17:20, Alioune Dia wrote:
Il dit juste que pour des raisons de *security* du protocole ntlm-v1
http://fr.wikipedia.org/wiki/NT_Lan_Manager ? IceWeasel
a desactivé cette option (Si tu tapes about:config , et que tu
recherches network.negotiate-auth.allow-insecure-ntlm-v1;tu verras
que c'est a false sans doute.) . Tu peux changer cette valeur et la
mettre a true , sauf que tu rends ton navigateur *unsafe*. Tout semble
ok pour moi .
--Ad
2014-10-21 18:28 GMT+02:00 Lien Rag <[email protected]
<mailto:[email protected]>>:
Après un apt-get upgrade je vois ce message:
iceweasel (31.0-1) unstable; urgency=medium
* Since version 30.0, NTLMv1 authentication has been disabled
because
it's known as insecure. Companies and organizations still
deploying
the older protocol should upgrade to NTLMv2, unfortunately,
it's not
supported by iceweasel.
It is however still possible to toggle the preference to
continue using
NTLMv1, though the NTLM auth support is considered deprecated, by
switching the network.negotiate-auth.allow-insecure-ntlm-v1
preference
in about:config.
See
https://developer.mozilla.org/en-US/Firefox/Releases/30/Site_Compatibili
ty#Security
for more details.
-- Mike Hommey <[email protected] <mailto:[email protected]>>
Wed, 23 Jul 2014 07:38:31 +0900
ca-certificates (20130119+deb7u1) stable; urgency=low
Update mozilla/certdata.txt to version 1.97
Certificates added (+), removed (-), and renamed (~):
+ "ACCVRAIZ1"
+ "Atos TrustedRoot 2011"
+ "CA Disig Root R1"
+ "CA Disig Root R2"
+ "China Internet Network Information Center EV Certificates Root"
+ "D-TRUST Root Class 3 CA 2 2009"
+ "D-TRUST Root Class 3 CA 2 EV 2009"
+ "E-Tugra Certification Authority"
+ "PSCProcert"
+ "SG TRUST SERVICES RACINE"
+ "StartCom Certification Authority"
~ "StartCom Certification Authority"_2
(both StartCom CAs now included with duplicate CKA_LABEL fix)
+ "Swisscom Root CA 2"
+ "Swisscom Root EV CA 2"
+ "T-TeleSec GlobalRoot Class 2"
+ "TURKTRUST Certificate Services Provider Root 2007"
+ "TWCA Global Root CA"
+ "TeliaSonera Root CA v1"
+ "Verisign Class 3 Public Primary Certification Authority"
~ "Verisign Class 3 Public Primary Certification Authority"_2
(both Verisign Class 3 CAs now included with duplicate
CKA_LABEL fix)
- "Equifax Secure eBusiness CA 2"
- "Firmaprofesional Root CA"
- "TC TrustCenter Universal CA III"
- "TDC OCES Root CA"
- "Wells Fargo Root CA"
-- Michael Shuler <[email protected]
<mailto:[email protected]>> Sun, 30 Mar 2014 17:49:01 -0500
J'avoue que je n'y comprends pas grand-chose.
Il faut juste modifier about:config d'Iceweasel?
Ou ce n'est même pas la peine?
--
Ce message a été envoyé à la liste [email protected]
Gestion de votre abonnement : http://dakarlug.org/liste
Archives : http://news.gmane.org/gmane.org.user-groups.linux.dakarlug
Le site du DakarLUG : http://dakarlug.org
