Description of problem:
The NTLM authentication is commonly used in mixed Linux/Windows environments. RHEL-7 libcurl supports only NTLMv1, which is known to be insecure. On the other hand, bringing NTLMv2 into RHEL-7 libcurl could be disruptive and break backward compatibility.
A possible solution for RHEL customers that need git with NTLMv2 authentication is RHSCL. git successfully authenticates with NTLMv2 if the httpd24-libcurl library is preloaded via LD_PRELOAD. Customers now ask for a more enterprise solution.
I propose to link RHSCL git against RHSCL libcurl to address this request.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. git clone over NTLMv2-authenticated HTTP proxy
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.
For information on the advisory, and where to find the updated
files, follow the link below.
If the solution does not work for you, open a new bug report.