534870 - Ntlm proxy authentication badly handled

Status: VERIFIED DUPLICATE of bug 535193

(Core :: Networking, defect)

Description

[suricate]

User-Agent:       Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; [eburo v2.0]; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022)
Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.1; fr; rv:1.9.2b4) Gecko/20091124 Firefox/3.6b4

NTLM proxy authentication is badly handled.

Here is what I observed while trying to connect to any web site ( www.mozilla.org in this example ), using an http proxy server that requires NTLM authentication ( on a corporate network )
First, the browser sends a GET request to the proxy
The proxy gives a 407 proxy authentication required
Then, the browser pop's up a login/passwd window (I've switched the network.automatic-ntlm-auth.allow-proxies to false )
I enter the correct login/passwd
Everything is ok up to now.

But then, the browser sends a DNS query A http://www.mozilla.org
Of course, in this architecture, it does not get an answer from the internal dnsserver, thus the body of the 407 error pages shows up.

My understanding is that after entering the login/passwd, the browser should send a new GET request to the proxy with the NTLM Proxy-Authorization header (

Reproducible: Always

Steps to Reproduce:
set up an http proxy with ntlm authentication
set up firefox to use this proxy
set network.automatic-ntlm-auth.allow-proxies to false
try to reach http://www.mozilla.org

Actual Results:  
Error page provided by the proxy shows up

Comment 2

[Carsten Book [:Tomcat]]

v.