User-Agent: Mozilla/5.0 (X11; U; Linux x86_64; en-GB; rv:1.9.1.17) Gecko/20110121 SUSE/2.0.12-1 SeaMonkey/2.0.12 Build Identifier: On Linux, the ntlm_auth helper application from the Samba suite is used to enable NTLM authentication based on user credentials without user intervention. However the helper is called only in a very special environment setup - it has to be accessible in the directory browser has been started from (usually user's home directory), which is rarely the case. Reproducible: Always

The problem seems to be execve(), which is used in the end to call the helper app. This function needs full path to the binary - it does not perform lookup in the directories specified in the PATH environment variable. GNU Libc 2.11+ offers execvpe() which does the lookup, yet it is a GNU extension. This bug was found on SUSE Linux/openSUSE.

Comment on attachment 512525 [details] [diff] [review] hard-wire the usual path (on linux systems) to ntlm_auth Mike, what do you think about this change?

Comment on attachment 512525 [details] [diff] [review] hard-wire the usual path (on linux systems) to ntlm_auth Review of attachment 512525 [details] [diff] [review]: ----------------------------------------------------------------- I'm not a peer of that part of the tree, but hardcoding a path is hardly a fix. I don't know if we have an API to lookup a file in PATH, but that's what should be done.