none
Reverse Proxy com autenticação NTLM RRS feed

  • Pergunta

  • Olá Pessoal,

    Configurei um IIS como reverse proxy com o ARR - Application Request Routing.
    Este reverse proxy redirecina um segundo IIS onde está configurado com autenticação integrada com o windows.

    Quando utilizo o segundo servidor diretamente apenas uma autenticação é negociada.
    Quando utilizo o servidor proxy, a cada requisição uma nova autenticação é negociada.

    Como faço para evitar isso?
    Pelo que eu andei lendo, isso acontece pois o handshake de autenticação NTLM deve ser feito com a mesma conexão. E o reverse proxy abre uma nova conexão para casa passo do hanshake.

    sábado, 7 de maio de 2011 13:35

Respostas

  • Lazize, 

     

    Tudo bem?

     

    Desculpe a demora em responder está thread, eu estava focado em um prova...

     

    Bom, quando você habilita o NTLM por padrão a autenticação é negociada... O que você pode fazer é alterar o 'negotiate' para 'NTLM', dentro do elemento <provider> que fica dentro de <Windows Authentication> localizado no ApplicationHost.config.

     

    []s


    Erick Albuquerque | Moderador Fórum Technet
    Blog: http://erickalbuquerque.com.br |
    Artigos IIS: http://iisbrasil.wordpress.com
    Twitter: @_ealbuquerque
    Linkedin: http://br.linkedin.com/in/easantos
    sexta-feira, 13 de maio de 2011 14:19
    Moderador

Todas as Respostas

  • Lazize, 

     

    Tudo bem?

     

    Desculpe a demora em responder está thread, eu estava focado em um prova...

     

    Bom, quando você habilita o NTLM por padrão a autenticação é negociada... O que você pode fazer é alterar o 'negotiate' para 'NTLM', dentro do elemento <provider> que fica dentro de <Windows Authentication> localizado no ApplicationHost.config.

     

    []s


    Erick Albuquerque | Moderador Fórum Technet
    Blog: http://erickalbuquerque.com.br |
    Artigos IIS: http://iisbrasil.wordpress.com
    Twitter: @_ealbuquerque
    Linkedin: http://br.linkedin.com/in/easantos
    sexta-feira, 13 de maio de 2011 14:19
    Moderador
  • Olá Erick,

     

    Tudo bem sim, obrigado por perguntar. Espero que com você também.

    Boa sorte na sua prova.

    Obrigado pela resposta.

     

    Na verdade o meu problema é que quando eu utilizo o ARR como reverse proxy, ele sempre tenta fazer a negociação NTLM para cada requisição.

    Se eu tirar o reverse proxy, ou seja, utilizar o servidor de destino diretamente, ele apenas negocia a autenticação uma única vez, e esta autenticação não é NTLM e sim Kerberos.

    O que eu quero é justamente fazer com que o reserve proxy funciona da mesma forma que utilizar o servidor diretamente.

     

    É possível?

     

    Abraços

    quarta-feira, 18 de maio de 2011 11:18
  • Olá,

    Usei o Fiddler para pegar um exmplo do que estou tentanto explicar, vejam abaixo.

    Notem que na utilização do reserve proxy temos um monte de 401 (Autentication), e sem o reverse proxy, temos apenas um.

     

    ##############

    ### REVERSE PROXY

    ##############

    GET http://teste.call.br.com/ HTTP/1.1
    Accept: application/x-ms-application, image/jpeg, application/xaml+xml, image/gif, image/pjpeg, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, */*
    Accept-Language: en-US,pt-BR;q=0.5
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E)
    Accept-Encoding: gzip, deflate
    Connection: Keep-Alive
    Host: teste.call.br.com
    Cookie: ASPSESSIONIDAQTTSRAD=LCCJNKJBELKCMPOIMDNJLDGL


    HTTP/1.1 401 Unauthorized
    Date: Wed, 18 May 2011 12:22:36 GMT
    Server: Microsoft-IIS/7.0
    Content-Type: text/html
    WWW-Authenticate: Negotiate
    WWW-Authenticate: NTLM
    X-Powered-By: ASP.NET
    Content-Length: 58
    Keep-Alive: timeout=15, max=100
    Connection: Keep-Alive
    Proxy-Support: Session-Based-Authentication

     

    ------------------------------------------------------------------

    GET http://teste.call.br.com/ HTTP/1.1
    Accept: application/x-ms-application, image/jpeg, application/xaml+xml, image/gif, image/pjpeg, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, */*
    Accept-Language: en-US,pt-BR;q=0.5
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E)
    Accept-Encoding: gzip, deflate
    Connection: Keep-Alive
    Cookie: ASPSESSIONIDAQTTSRAD=LCCJNKJBELKCMPOIMDNJLDGL
    Authorization: Negotiate TlRMTVNTUAABAAAAl4II4gAAAAAAAAAAAAAAAAAAAAAGAbEdAAAADw==
    Host: teste.call.br.com


    HTTP/1.1 401 Unauthorized
    Date: Wed, 18 May 2011 12:22:36 GMT
    Server: Microsoft-HTTPAPI/2.0
    Content-Type: text/html; charset=us-ascii
    WWW-Authenticate: Negotiate TlRMTVNTUAACAAAADA....
    Content-Length: 341
    Keep-Alive: timeout=15, max=99
    Connection: Keep-Alive
    Proxy-Support: Session-Based-Authentication

     

    ------------------------------------------------------------------

    GET http://teste.call.br.com/ HTTP/1.1
    Accept: application/x-ms-application, image/jpeg, application/xaml+xml, image/gif, image/pjpeg, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, */*
    Accept-Language: en-US,pt-BR;q=0.5
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E)
    Accept-Encoding: gzip, deflate
    Connection: Keep-Alive
    Cookie: ASPSESSIONIDAQTTSRAD=LCCJNKJBELKCMPOIMDNJLDGL
    Host: teste.call.br.com
    Authorization: Negotiate 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


    HTTP/1.1 302 Object moved
    Date: Wed, 18 May 2011 12:22:36 GMT
    Server: Microsoft-IIS/7.0
    Cache-Control: private
    Content-Length: 132
    Content-Type: text/html
    Location: empresa.asp
    X-Powered-By: ASP.NET
    Set-Cookie: ASPSESSIONIDQCSDTRRA=GBCNIKNBEJNBFNMEGPAIMOGG; path=/
    Keep-Alive: timeout=15, max=98
    Connection: Keep-Alive

     

    ------------------------------------------------------------------

    GET http://teste.call.br.com/empresa.asp HTTP/1.1
    Accept: application/x-ms-application, image/jpeg, application/xaml+xml, image/gif, image/pjpeg, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, */*
    Accept-Language: en-US,pt-BR;q=0.5
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E)
    Accept-Encoding: gzip, deflate
    Connection: Keep-Alive
    Authorization: Negotiate TlRMTVNTUAABAAAAl4II4gAAAAAAAAAAAAAAAAAAAAAGAbEdAAAADw==
    Host: teste.call.br.com
    Cookie: ASPSESSIONIDAQTTSRAD=LCCJNKJBELKCMPOIMDNJLDGL; ASPSESSIONIDQCSDTRRA=GBCNIKNBEJNBFNMEGPAIMOGG


    HTTP/1.1 401 Unauthorized
    Date: Wed, 18 May 2011 12:22:37 GMT
    Server: Microsoft-HTTPAPI/2.0
    Content-Type: text/html; charset=us-ascii
    WWW-Authenticate: Negotiate TlRMTVNTU....
    Content-Length: 341
    Keep-Alive: timeout=15, max=97
    Connection: Keep-Alive
    Proxy-Support: Session-Based-Authentication

     

    ------------------------------------------------------------------

    GET http://teste.call.br.com/empresa.asp HTTP/1.1
    Accept: application/x-ms-application, image/jpeg, application/xaml+xml, image/gif, image/pjpeg, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, */*
    Accept-Language: en-US,pt-BR;q=0.5
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E)
    Accept-Encoding: gzip, deflate
    Connection: Keep-Alive
    Cookie: ASPSESSIONIDAQTTSRAD=LCCJNKJBELKCMPOIMDNJLDGL; ASPSESSIONIDQCSDTRRA=GBCNIKNBEJNBFNMEGPAIMOGG
    Host: teste.call.br.com
    Authorization: Negotiate TlRMTVNTUAADAAAAGAAYAHoAAACAAYABkgAAAAwADABYAAAADAAMAGQAAAAKAAoAcAAAABAAEAASAgAAFYKI4gYBsR0AAAAPbOKf6Y/Pn1/Xenl1H/R+AEcATABPAEIAQQBMAFMAQgBUAFIAVABJAE0ANQA1ADMAOAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPylr4mXe+14CI+67HJwklAQEAAAAAAAAK0gFGVhXMAeimSGqF0BIFAAAAAAIADABHAEwATwBCAEEATAABABYAQgBSAFMAQQBXAEwALQAxADAAMABEAAQAKgBnAGwAbwBiAGEAbAAuAHMAYwBkAC4AcwBjAGEAbgBpAGEALgBjAG8AbQADADIAQgBSAFMAQQBXAEwALQAxADAAMABEAC4AYgByAC4AcwBjAGEAbgBpAGEALgBjAG8AbQAFABwAcwBjAGQALgBzAGMAYQBuAGkAYQAuAGMAbwBtAAcACAAK0gFGVhXMAQYABAACAAAACAAwADAAAAAAAAAAAQAAAAAgAADVMhyo+QU2f4p2n51pIT/bCBRdS19Og7098rTH5rNkrAoAEAAAAAAAAAAAAAAAAAAAAAAACQA6AEgAVABUAFAALwB0AGUAcwB0AGUALgBjAGEAbABsAC4AYgByAC4AcwBjAGEAbgBpAGEALgBjAG8AbQAAAAAAAAAAAAAAAAAwg7zHq+OA6zicj+9hYpJi


    HTTP/1.1 200 OK
    Date: Wed, 18 May 2011 12:22:37 GMT
    Server: Microsoft-IIS/7.0
    Cache-Control: private
    Content-Length: 32581
    Content-Type: text/html
    X-Powered-By: ASP.NET
    Keep-Alive: timeout=15, max=96
    Connection: Keep-Alive

     

    ------------------------------------------------------------------

    GET http://teste.call.br.com/style.css HTTP/1.1
    Accept: */*
    Referer: http://teste.call.br.com/empresa.asp
    Accept-Language: en-US,pt-BR;q=0.5
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E)
    Accept-Encoding: gzip, deflate
    Host: teste.call.br.com
    If-Modified-Since: Thu, 23 Dec 2010 16:33:54 GMT
    If-None-Match: "fa536730bfa2cb1:0"
    Connection: Keep-Alive
    Cookie: ASPSESSIONIDAQTTSRAD=LCCJNKJBELKCMPOIMDNJLDGL; ASPSESSIONIDQCSDTRRA=GBCNIKNBEJNBFNMEGPAIMOGG


    HTTP/1.1 401 Unauthorized
    Date: Wed, 18 May 2011 12:22:38 GMT
    Server: Microsoft-IIS/7.0
    Content-Type: text/html
    WWW-Authenticate: Negotiate
    WWW-Authenticate: NTLM
    X-Powered-By: ASP.NET
    Content-Length: 58
    Keep-Alive: timeout=15, max=100
    Connection: Keep-Alive
    Proxy-Support: Session-Based-Authentication

     

    ------------------------------------------------------------------

    GET http://teste.call.br.com/images/logo.gif HTTP/1.1
    Accept: */*
    Referer: http://teste.call.br.com/empresa.asp
    Accept-Language: en-US,pt-BR;q=0.5
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E)
    Accept-Encoding: gzip, deflate
    Host: teste.call.br.com
    If-Modified-Since: Thu, 23 Dec 2010 16:33:53 GMT
    If-None-Match: "1a9fc2fbfa2cb1:0"
    Connection: Keep-Alive
    Cookie: ASPSESSIONIDAQTTSRAD=LCCJNKJBELKCMPOIMDNJLDGL; ASPSESSIONIDQCSDTRRA=GBCNIKNBEJNBFNMEGPAIMOGG


    HTTP/1.1 304 Not Modified
    Date: Wed, 18 May 2011 12:22:38 GMT
    Server: Microsoft-IIS/7.0
    Connection: Keep-Alive
    Keep-Alive: timeout=15, max=95
    ETag: "1a9fc2fbfa2cb1:0"

     

    ------------------------------------------------------------------

    GET http://teste.call.br.com/style.css HTTP/1.1
    Accept: */*
    Referer: http://teste.call.br.com/empresa.asp
    Accept-Language: en-US,pt-BR;q=0.5
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E)
    Accept-Encoding: gzip, deflate
    Host: teste.call.br.com
    If-Modified-Since: Thu, 23 Dec 2010 16:33:54 GMT
    If-None-Match: "fa536730bfa2cb1:0"
    Connection: Keep-Alive
    Cookie: ASPSESSIONIDAQTTSRAD=LCCJNKJBELKCMPOIMDNJLDGL; ASPSESSIONIDQCSDTRRA=GBCNIKNBEJNBFNMEGPAIMOGG
    Authorization: Negotiate TlRMTVNTUAABAAAAl4II4gAAAAAAAAAAAAAAAAAAAAAGAbEdAAAADw==


    HTTP/1.1 401 Unauthorized
    Date: Wed, 18 May 2011 12:22:38 GMT
    Server: Microsoft-HTTPAPI/2.0
    Content-Type: text/html; charset=us-ascii
    WWW-Authenticate: Negotiate TlRMTVNT....
    Content-Length: 341
    Keep-Alive: timeout=15, max=94
    Connection: Keep-Alive
    Proxy-Support: Session-Based-Authentication

     

    ------------------------------------------------------------------

    GET http://teste.call.br.com/style.css HTTP/1.1
    Accept: */*
    Referer: http://teste.call.br.com/empresa.asp
    Accept-Language: en-US,pt-BR;q=0.5
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E)
    Accept-Encoding: gzip, deflate
    Cookie: ASPSESSIONIDAQTTSRAD=LCCJNKJBELKCMPOIMDNJLDGL; ASPSESSIONIDQCSDTRRA=GBCNIKNBEJNBFNMEGPAIMOGG
    If-Modified-Since: Thu, 23 Dec 2010 16:33:54 GMT
    If-None-Match: "fa536730bfa2cb1:0"
    Connection: Keep-Alive
    Authorization: Negotiate TlRMTVNTUAADAAAAGAAYAHoAAACAAYABkgAAAAwADABYAAAADAAMAGQAAAAKAAoAcAAAABAAEAASAgAAFYKI4gYBsR0AAAAPkKd5h0VtK9wUSLRZVhxN2EcATABPAEIAQQBMAFMAQgBUAFIAVABJAE0ANQA1ADMAOAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAucEMexQhGfjGCEON0n6AGAQEAAAAAAABbLb5GVhXMAQ8JgrHgz4v7AAAAAAIADABHAEwATwBCAEEATAABABYAQgBSAFMAQQBXAEwALQAxADAAMABEAAQAKgBnAGwAbwBiAGEAbAAuAHMAYwBkAC4AcwBjAGEAbgBpAGEALgBjAG8AbQADADIAQgBSAFMAQQBXAEwALQAxADAAMABEAC4AYgByAC4AcwBjAGEAbgBpAGEALgBjAG8AbQAFABwAcwBjAGQALgBzAGMAYQBuAGkAYQAuAGMAbwBtAAcACABbLb5GVhXMAQYABAACAAAACAAwADAAAAAAAAAAAQAAAAAgAADVMhyo+QU2f4p2n51pIT/bCBRdS19Og7098rTH5rNkrAoAEAAAAAAAAAAAAAAAAAAAAAAACQA6AEgAVABUAFAALwB0AGUAcwB0AGUALgBjAGEAbABsAC4AYgByAC4AcwBjAGEAbgBpAGEALgBjAG8AbQAAAAAAAAAAAAAAAAAN4cVB/1ghK3briGG9UDyU
    Host: teste.call.br.com


    HTTP/1.1 200 OK
    Date: Wed, 18 May 2011 12:22:38 GMT
    Server: Microsoft-IIS/7.0
    Content-Type: text/css
    Content-Encoding: gzip
    Last-Modified: Thu, 23 Dec 2010 16:33:52 GMT
    Accept-Ranges: bytes
    ETag: "018ee2ebfa2cb1:0"
    Vary: Accept-Encoding
    X-Powered-By: ASP.NET
    Content-Length: 1111
    Keep-Alive: timeout=15, max=93
    Connection: Keep-Alive

     

    ------------------------------------------------------------------

    GET http://teste.call.br.com/images/top2.jpg HTTP/1.1
    Accept: */*
    Referer: http://teste.call.br.com/empresa.asp
    Accept-Language: en-US,pt-BR;q=0.5
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E)
    Accept-Encoding: gzip, deflate
    Host: teste.call.br.com
    If-Modified-Since: Thu, 23 Dec 2010 16:33:53 GMT
    If-None-Match: "dae01330bfa2cb1:0"
    Connection: Keep-Alive
    Cookie: ASPSESSIONIDAQTTSRAD=LCCJNKJBELKCMPOIMDNJLDGL; ASPSESSIONIDQCSDTRRA=GBCNIKNBEJNBFNMEGPAIMOGG


    HTTP/1.1 401 Unauthorized
    Date: Wed, 18 May 2011 12:22:38 GMT
    Server: Microsoft-IIS/7.0
    Content-Type: text/html
    WWW-Authenticate: Negotiate
    WWW-Authenticate: NTLM
    X-Powered-By: ASP.NET
    Content-Length: 58
    Keep-Alive: timeout=15, max=99
    Connection: Keep-Alive
    Proxy-Support: Session-Based-Authentication

     

    ------------------------------------------------------------------

    GET http://teste.call.br.com/images/top.gif HTTP/1.1
    Accept: */*
    Referer: http://teste.call.br.com/empresa.asp
    Accept-Language: en-US,pt-BR;q=0.5
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E)
    Accept-Encoding: gzip, deflate
    Host: teste.call.br.com
    If-Modified-Since: Thu, 23 Dec 2010 16:33:53 GMT
    If-None-Match: "1a1cf30bfa2cb1:0"
    Connection: Keep-Alive
    Cookie: ASPSESSIONIDAQTTSRAD=LCCJNKJBELKCMPOIMDNJLDGL; ASPSESSIONIDQCSDTRRA=GBCNIKNBEJNBFNMEGPAIMOGG


    HTTP/1.1 304 Not Modified
    Date: Wed, 18 May 2011 12:22:38 GMT
    Server: Microsoft-IIS/7.0
    Connection: Keep-Alive
    Keep-Alive: timeout=15, max=92
    ETag: "1a1cf30bfa2cb1:0"

     

    ------------------------------------------------------------------

    GET http://commonapplications.br.com//imagens/down.gif HTTP/1.1
    Accept: */*
    Referer: http://teste.call.br.com/empresa.asp
    Accept-Language: en-US,pt-BR;q=0.5
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E)
    Accept-Encoding: gzip, deflate
    Host: commonapplications.br.com
    If-Modified-Since: Wed, 03 Feb 2010 16:53:16 GMT
    If-None-Match: "bfca961f1a4ca1:29e"
    Connection: Keep-Alive


    HTTP/1.1 304 Not Modified
    Last-Modified: Wed, 03 Feb 2010 16:53:16 GMT
    Accept-Ranges: bytes
    ETag: "bfca961f1a4ca1:29e"
    Server: Microsoft-IIS/6.0
    X-Powered-By: ASP.NET
    Date: Wed, 18 May 2011 12:22:38 GMT

     

    ------------------------------------------------------------------

    GET http://teste.call.br.com/images/top2.jpg HTTP/1.1
    Accept: */*
    Referer: http://teste.call.br.com/empresa.asp
    Accept-Language: en-US,pt-BR;q=0.5
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E)
    Accept-Encoding: gzip, deflate
    Host: teste.call.br.com
    If-Modified-Since: Thu, 23 Dec 2010 16:33:53 GMT
    If-None-Match: "dae01330bfa2cb1:0"
    Connection: Keep-Alive
    Cookie: ASPSESSIONIDAQTTSRAD=LCCJNKJBELKCMPOIMDNJLDGL; ASPSESSIONIDQCSDTRRA=GBCNIKNBEJNBFNMEGPAIMOGG
    Authorization: Negotiate TlRMTVNTUAABAAAAl4II4gAAAAAAAAAAAAAAAAAAAAAGAbEdAAAADw==


    HTTP/1.1 401 Unauthorized
    Date: Wed, 18 May 2011 12:22:38 GMT
    Server: Microsoft-HTTPAPI/2.0
    Content-Type: text/html; charset=us-ascii
    WWW-Authenticate: Negotiate TlRMTVNTUA....
    Content-Length: 341
    Keep-Alive: timeout=15, max=98
    Connection: Keep-Alive
    Proxy-Support: Session-Based-Authentication

     

    ------------------------------------------------------------------

    GET http://teste.call.br.com/images/top.gif HTTP/1.1
    Accept: */*
    Referer: http://teste.call.br.com/empresa.asp
    Accept-Language: en-US,pt-BR;q=0.5
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E)
    Accept-Encoding: gzip, deflate
    Host: teste.call.br.com
    If-Modified-Since: Thu, 23 Dec 2010 16:33:53 GMT
    If-None-Match: "1a1cf30bfa2cb1:0"
    Connection: Keep-Alive
    Cookie: ASPSESSIONIDAQTTSRAD=LCCJNKJBELKCMPOIMDNJLDGL; ASPSESSIONIDQCSDTRRA=GBCNIKNBEJNBFNMEGPAIMOGG
    Authorization: Negotiate TlRMTVNTUAABAAAAl4II4gAAAAAAAAAAAAAAAAAAAAAGAbEdAAAADw==


    HTTP/1.1 401 Unauthorized
    Date: Wed, 18 May 2011 12:22:38 GMT
    Server: Microsoft-HTTPAPI/2.0
    Content-Type: text/html; charset=us-ascii
    WWW-Authenticate: Negotiate TlRMTVNTUA....
    Content-Length: 341
    Keep-Alive: timeout=15, max=100
    Connection: Keep-Alive
    Proxy-Support: Session-Based-Authentication

     

    ------------------------------------------------------------------

    GET http://teste.call.br.com/images/fundo.jpg HTTP/1.1
    Accept: */*
    Referer: http://teste.call.br.com/empresa.asp
    Accept-Language: en-US,pt-BR;q=0.5
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E)
    Accept-Encoding: gzip, deflate
    Host: teste.call.br.com
    If-Modified-Since: Thu, 23 Dec 2010 16:33:53 GMT
    If-None-Match: "5a44f72fbfa2cb1:0"
    Connection: Keep-Alive
    Cookie: ASPSESSIONIDAQTTSRAD=LCCJNKJBELKCMPOIMDNJLDGL; ASPSESSIONIDQCSDTRRA=GBCNIKNBEJNBFNMEGPAIMOGG
    Authorization: Negotiate TlRMTVNTUAABAAAAl4II4gAAAAAAAAAAAAAAAAAAAAAGAbEdAAAADw==


    HTTP/1.1 401 Unauthorized
    Date: Wed, 18 May 2011 12:22:38 GMT
    Server: Microsoft-HTTPAPI/2.0
    Content-Type: text/html; charset=us-ascii
    WWW-Authenticate: Negotiate TlRM....
    Content-Length: 341
    Keep-Alive: timeout=15, max=91
    Connection: Keep-Alive
    Proxy-Support: Session-Based-Authentication

     

    ------------------------------------------------------------------

    GET http://teste.call.br.com/images/fundo.jpg HTTP/1.1
    Accept: */*
    Referer: http://teste.call.br.com/empresa.asp
    Accept-Language: en-US,pt-BR;q=0.5
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E)
    Accept-Encoding: gzip, deflate
    Cookie: ASPSESSIONIDAQTTSRAD=LCCJNKJBELKCMPOIMDNJLDGL; ASPSESSIONIDQCSDTRRA=GBCNIKNBEJNBFNMEGPAIMOGG
    If-Modified-Since: Thu, 23 Dec 2010 16:33:53 GMT
    If-None-Match: "5a44f72fbfa2cb1:0"
    Connection: Keep-Alive
    Authorization: Negotiate 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
    Host: teste.call.br.com


    HTTP/1.1 304 Not Modified
    Date: Wed, 18 May 2011 12:22:38 GMT
    Server: Microsoft-IIS/7.0
    Connection: Keep-Alive
    Keep-Alive: timeout=15, max=90
    ETag: "5a44f72fbfa2cb1:0"

     

    ------------------------------------------------------------------

    GET http://teste.call.br.com/images/top2.jpg HTTP/1.1
    Accept: */*
    Referer: http://teste.call.br.com/empresa.asp
    Accept-Language: en-US,pt-BR;q=0.5
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E)
    Accept-Encoding: gzip, deflate
    Cookie: ASPSESSIONIDAQTTSRAD=LCCJNKJBELKCMPOIMDNJLDGL; ASPSESSIONIDQCSDTRRA=GBCNIKNBEJNBFNMEGPAIMOGG
    If-Modified-Since: Thu, 23 Dec 2010 16:33:53 GMT
    If-None-Match: "dae01330bfa2cb1:0"
    Connection: Keep-Alive
    Authorization: Negotiate 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
    Host: teste.call.br.com


    HTTP/1.1 304 Not Modified
    Date: Wed, 18 May 2011 12:22:38 GMT
    Server: Microsoft-IIS/7.0
    Connection: Keep-Alive
    Keep-Alive: timeout=15, max=97
    ETag: "dae01330bfa2cb1:0"

     

    ------------------------------------------------------------------

    GET http://teste.call.br.com/images/top.gif HTTP/1.1
    Accept: */*
    Referer: http://teste.call.br.com/empresa.asp
    Accept-Language: en-US,pt-BR;q=0.5
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E)
    Accept-Encoding: gzip, deflate
    Cookie: ASPSESSIONIDAQTTSRAD=LCCJNKJBELKCMPOIMDNJLDGL; ASPSESSIONIDQCSDTRRA=GBCNIKNBEJNBFNMEGPAIMOGG
    If-Modified-Since: Thu, 23 Dec 2010 16:33:53 GMT
    If-None-Match: "1a1cf30bfa2cb1:0"
    Connection: Keep-Alive
    Authorization: Negotiate TlRMTVNTUAADAAAAGAAYAHoAAACAAYABkgAAAAwADABYAAAADAAMAGQAAAAKAAoAcAAAABAAEAASAgAAFYKI4gYBsR0AAAAPyBf9FiLpXxmNQ+EtkW5Zi0cATABPAEIAQQBMAFMAQgBUAFIAVABJAE0ANQA1ADMAOAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD+i0LW0HuBZuGiDwR/bQnyAQEAAAAAAABTQNFGVhXMAWD1J6joyYJGAAAAAAIADABHAEwATwBCAEEATAABABYAQgBSAFMAQQBXAEwALQAxADAAMABEAAQAKgBnAGwAbwBiAGEAbAAuAHMAYwBkAC4AcwBjAGEAbgBpAGEALgBjAG8AbQADADIAQgBSAFMAQQBXAEwALQAxADAAMABEAC4AYgByAC4AcwBjAGEAbgBpAGEALgBjAG8AbQAFABwAcwBjAGQALgBzAGMAYQBuAGkAYQAuAGMAbwBtAAcACABTQNFGVhXMAQYABAACAAAACAAwADAAAAAAAAAAAQAAAAAgAADVMhyo+QU2f4p2n51pIT/bCBRdS19Og7098rTH5rNkrAoAEAAAAAAAAAAAAAAAAAAAAAAACQA6AEgAVABUAFAALwB0AGUAcwB0AGUALgBjAGEAbABsAC4AYgByAC4AcwBjAGEAbgBpAGEALgBjAG8AbQAAAAAAAAAAAAAAAADUfh3fgT/4aQa/gNt5EhGA
    Host: teste.call.br.com


    HTTP/1.1 304 Not Modified
    Date: Wed, 18 May 2011 12:22:38 GMT
    Server: Microsoft-IIS/7.0
    Connection: Keep-Alive
    Keep-Alive: timeout=15, max=99
    ETag: "1a1cf30bfa2cb1:0"

     

    ------------------------------------------------------------------

     

    ##############

    ### DIRECT

    ##############

    GET http://call.br.com/ HTTP/1.1
    Accept: application/x-ms-application, image/jpeg, application/xaml+xml, image/gif, image/pjpeg, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, */*
    Accept-Language: en-US,pt-BR;q=0.5
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E)
    Accept-Encoding: gzip, deflate
    Connection: Keep-Alive
    Host: call.br.com


    HTTP/1.1 401 Unauthorized
    Content-Type: text/html
    Server: Microsoft-IIS/7.0
    WWW-Authenticate: Negotiate
    WWW-Authenticate: NTLM
    X-Powered-By: ASP.NET
    Date: Wed, 18 May 2011 12:31:59 GMT
    Content-Length: 1293
    Proxy-Support: Session-Based-Authentication

     

    ------------------------------------------------------------------

    GET http://call.br.com/ HTTP/1.1
    Accept: application/x-ms-application, image/jpeg, application/xaml+xml, image/gif, image/pjpeg, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, */*
    Accept-Language: en-US,pt-BR;q=0.5
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E)
    Accept-Encoding: gzip, deflate
    Connection: Keep-Alive
    Host: call.br.com
    Authorization: Negotiate YIILvAYG...


    HTTP/1.1 302 Object moved
    Cache-Control: private
    Content-Length: 132
    Content-Type: text/html
    Location: empresa.asp
    Server: Microsoft-IIS/7.0
    Set-Cookie: ASPSESSIONIDAQTTSRAD=BDCJNKJBCIPPGHENDANJNEOE; path=/
    X-Powered-By: ASP.NET
    WWW-Authenticate: Negotiate oYG1MIGyo....
    Date: Wed, 18 May 2011 12:31:59 GMT

     

    ------------------------------------------------------------------

    GET http://call.br.com/empresa.asp HTTP/1.1
    Accept: application/x-ms-application, image/jpeg, application/xaml+xml, image/gif, image/pjpeg, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, */*
    Accept-Language: en-US,pt-BR;q=0.5
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E)
    Accept-Encoding: gzip, deflate
    Connection: Keep-Alive
    Host: call.br.com
    Authorization: Negotiate YIILvA....
    Cookie: ASPSESSIONIDAQTTSRAD=BDCJNKJBCIPPGHENDANJNEOE


    HTTP/1.1 200 OK
    Cache-Control: private
    Content-Length: 31244
    Content-Type: text/html
    Server: Microsoft-IIS/7.0
    X-Powered-By: ASP.NET
    WWW-Authenticate: Negotiate oYG1MIGyo....
    Date: Wed, 18 May 2011 12:32:00 GMT

     

    ------------------------------------------------------------------

    GET http://call.br.com/style.css HTTP/1.1
    Accept: */*
    Referer: http://call.br.com/empresa.asp
    Accept-Language: en-US,pt-BR;q=0.5
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E)
    Accept-Encoding: gzip, deflate
    Host: call.br.com
    If-Modified-Since: Thu, 23 Dec 2010 16:26:22 GMT
    If-None-Match: "67fb1523bea2cb1:0"
    Connection: Keep-Alive
    Cookie: ASPSESSIONIDAQTTSRAD=BDCJNKJBCIPPGHENDANJNEOE
    Authorization: Negotiate YIILv....


    HTTP/1.1 304 Not Modified
    Last-Modified: Thu, 23 Dec 2010 16:26:22 GMT
    Accept-Ranges: bytes
    ETag: "67fb1523bea2cb1:0"
    Server: Microsoft-IIS/7.0
    X-Powered-By: ASP.NET
    WWW-Authenticate: Negotiate oYG1MI....
    Date: Wed, 18 May 2011 12:32:00 GMT

     

    ------------------------------------------------------------------

    GET http://call.br.com/images/logo.gif HTTP/1.1
    Accept: */*
    Referer: http://call.br.com/empresa.asp
    Accept-Language: en-US,pt-BR;q=0.5
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E)
    Accept-Encoding: gzip, deflate
    Host: call.br.com
    If-Modified-Since: Thu, 23 Dec 2010 16:26:22 GMT
    If-None-Match: "161bb22bea2cb1:0"
    Connection: Keep-Alive
    Cookie: ASPSESSIONIDAQTTSRAD=BDCJNKJBCIPPGHENDANJNEOE
    Authorization: Negotiate YIILvA...


    HTTP/1.1 304 Not Modified
    Last-Modified: Thu, 23 Dec 2010 16:26:22 GMT
    Accept-Ranges: bytes
    ETag: "161bb22bea2cb1:0"
    Server: Microsoft-IIS/7.0
    X-Powered-By: ASP.NET
    WWW-Authenticate: Negotiate oYG1MI....
    Date: Wed, 18 May 2011 12:32:00 GMT

     

    ------------------------------------------------------------------

    GET http://call.br.com/images/top.gif HTTP/1.1
    Accept: */*
    Referer: http://call.br.com/empresa.asp
    Accept-Language: en-US,pt-BR;q=0.5
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E)
    Accept-Encoding: gzip, deflate
    Host: call.br.com
    If-Modified-Since: Thu, 23 Dec 2010 16:26:22 GMT
    If-None-Match: "a811cc22bea2cb1:0"
    Connection: Keep-Alive
    Cookie: ASPSESSIONIDAQTTSRAD=BDCJNKJBCIPPGHENDANJNEOE
    Authorization: Negotiate YIILv...


    HTTP/1.1 304 Not Modified
    Last-Modified: Thu, 23 Dec 2010 16:26:22 GMT
    Accept-Ranges: bytes
    ETag: "a811cc22bea2cb1:0"
    Server: Microsoft-IIS/7.0
    X-Powered-By: ASP.NET
    WWW-Authenticate: Negotiate oYG1MIGy....
    Date: Wed, 18 May 2011 12:32:00 GMT

     

    ------------------------------------------------------------------

    GET http://call.br.com/images/top2.jpg HTTP/1.1
    Accept: */*
    Referer: http://call.br.com/empresa.asp
    Accept-Language: en-US,pt-BR;q=0.5
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E)
    Accept-Encoding: gzip, deflate
    Host: call.br.com
    If-Modified-Since: Thu, 23 Dec 2010 16:26:22 GMT
    If-None-Match: "974ce22bea2cb1:0"
    Connection: Keep-Alive
    Cookie: ASPSESSIONIDAQTTSRAD=BDCJNKJBCIPPGHENDANJNEOE
    Authorization: Negotiate YIILv...


    HTTP/1.1 304 Not Modified
    Last-Modified: Thu, 23 Dec 2010 16:26:22 GMT
    Accept-Ranges: bytes
    ETag: "974ce22bea2cb1:0"
    Server: Microsoft-IIS/7.0
    X-Powered-By: ASP.NET
    WWW-Authenticate: Negotiate oYG1MIGyoA....
    Date: Wed, 18 May 2011 12:32:00 GMT

     

    ------------------------------------------------------------------

    GET http://commonapplications.br.com//imagens/down.gif HTTP/1.1
    Accept: */*
    Referer: http://call.br.com/empresa.asp
    Accept-Language: en-US,pt-BR;q=0.5
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E)
    Accept-Encoding: gzip, deflate
    Host: commonapplications.br.com
    If-Modified-Since: Wed, 03 Feb 2010 16:53:16 GMT
    If-None-Match: "bfca961f1a4ca1:29e"
    Connection: Keep-Alive


    HTTP/1.1 304 Not Modified
    Last-Modified: Wed, 03 Feb 2010 16:53:16 GMT
    Accept-Ranges: bytes
    ETag: "bfca961f1a4ca1:29e"
    Server: Microsoft-IIS/6.0
    X-Powered-By: ASP.NET
    Date: Wed, 18 May 2011 12:32:00 GMT

     

    ------------------------------------------------------------------

    GET http://call.br.com/images/top2.jpg HTTP/1.1
    Accept: */*
    Referer: http://call.br.com/empresa.asp
    Accept-Language: en-US,pt-BR;q=0.5
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E)
    Accept-Encoding: gzip, deflate
    Host: call.br.com
    If-Modified-Since: Thu, 23 Dec 2010 16:26:22 GMT
    If-None-Match: "974ce22bea2cb1:0"
    Connection: Keep-Alive
    Cookie: ASPSESSIONIDAQTTSRAD=BDCJNKJBCIPPGHENDANJNEOE
    Authorization: Negotiate YIILvAYG...


    HTTP/1.1 304 Not Modified
    Last-Modified: Thu, 23 Dec 2010 16:26:22 GMT
    Accept-Ranges: bytes
    ETag: "974ce22bea2cb1:0"
    Server: Microsoft-IIS/7.0
    X-Powered-By: ASP.NET
    WWW-Authenticate: Negotiate oYG1M....
    Date: Wed, 18 May 2011 12:32:00 GMT

     

    ------------------------------------------------------------------

    GET http://call.br.com/images/top.gif HTTP/1.1
    Accept: */*
    Referer: http://call.br.com/empresa.asp
    Accept-Language: en-US,pt-BR;q=0.5
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E)
    Accept-Encoding: gzip, deflate
    Host: call.br.com
    If-Modified-Since: Thu, 23 Dec 2010 16:26:22 GMT
    If-None-Match: "a811cc22bea2cb1:0"
    Connection: Keep-Alive
    Cookie: ASPSESSIONIDAQTTSRAD=BDCJNKJBCIPPGHENDANJNEOE
    Authorization: Negotiate YIILv...


    HTTP/1.1 304 Not Modified
    Last-Modified: Thu, 23 Dec 2010 16:26:22 GMT
    Accept-Ranges: bytes
    ETag: "a811cc22bea2cb1:0"
    Server: Microsoft-IIS/7.0
    X-Powered-By: ASP.NET
    WWW-Authenticate: Negotiate oYG1MI....
    Date: Wed, 18 May 2011 12:32:00 GMT

     

    ------------------------------------------------------------------

    GET http://call.br.com/images/fundo.jpg HTTP/1.1
    Accept: */*
    Referer: http://call.br.com/empresa.asp
    Accept-Language: en-US,pt-BR;q=0.5
    User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; MS-RTC LM 8; .NET4.0C; .NET4.0E)
    Accept-Encoding: gzip, deflate
    Host: call.br.com
    If-Modified-Since: Thu, 23 Dec 2010 16:26:22 GMT
    If-None-Match: "3f9cb622bea2cb1:0"
    Connection: Keep-Alive
    Cookie: ASPSESSIONIDAQTTSRAD=BDCJNKJBCIPPGHENDANJNEOE
    Authorization: Negotiate YIILv...


    HTTP/1.1 304 Not Modified
    Last-Modified: Thu, 23 Dec 2010 16:26:22 GMT
    Accept-Ranges: bytes
    ETag: "3f9cb622bea2cb1:0"
    Server: Microsoft-IIS/7.0
    X-Powered-By: ASP.NET
    WWW-Authenticate: Negotiate oYG1MIGy....
    Date: Wed, 18 May 2011 12:32:00 GMT

     

    ------------------------------------------------------------------

     

    quarta-feira, 18 de maio de 2011 12:40