All geek questions in one place

How to write a Firefox add-in that automatically enters proxy passwords?

Suppose someone worked for a company that installed an HTTP proxy that prevents access to the Internet without authentication (NTLM, I think). Also suppose that this password was rotated daily, which added very little security, but mainly served to annoy employees. How would I start writing a Firefox add-on that automatically entered these rotating passwords?

To clarify: this add-on will not just send a password; the add-in will programmatically generate it with some knowledge of the password rotation scheme.

+4
source share
2 answers

It is built into Firefox. Open about: config, find 'ntlm'

The setting you are looking for is called network.automatic-ntlm-auth.trusted-uris and takes a comma-limited list of uris proxies.

This will allow FireFox to automatically send hashed copies of your Windows password to the proxy server, which is disabled by default. IE can do this automatically because it can use security zones to find out if a trusted server is trusted or not.

Blog post about it

+6
source

This is your lucky day - no supplement needed!

How to Configure Firefox for NTLM Authentication

  • In Firefox, type approximately: config in the address bar and press enter. You should see a huge list of configuration properties.
  • Find the setting called network.negotiate-auth.delegation-uris (the easiest way is to print this in the filter window at the top).
  • Double-click this line and enter the names of all servers that require network authentication, separated by commas. Then click "OK" to confirm.
  • Find the network.negotiate-auth.trusted-uris setting and set it to the same value as in # 3.
  • Find the network.ntlm.send-lm-response setting and set it to true.
  • Skip steps 7 and 8 if you are not using a proxy server.
  • Open the settings dialog box (Tools-> Options menu), and on the Advanced page, on the Network tab, click the Connection Settings button to get the proxy server configuration dialog:
  • Make sure that the correct proxy server is configured, and the same list of servers is listed in the "No proxy for:" field, as was established in step 3.
  • Done.
+3
source

Source: https://habr.com/ru/post/1276523/

More articles:


All Articles