No HTTPS redirection after 9234 Patch
After 9234 Upgrade Our NTLM Site (Passthrough Authentication) works even on port 80 when it should redirect to SSL site like on version 9233.
Behavior before patch: http://sd.comp.local immediately redirected to https://sd.comp.local and THEN NTLM auth was requested
Behavior after patch: http://sd.comp.local immediately authenticates user (over insecure HTTP) and logs them in the http site (no redirection to 443/SSL/https site).
Please fix this immediately as it is a huge security risk!
Behavior before patch: http://sd.comp.local immediately redirected to https://sd.comp.local and THEN NTLM auth was requested
Behavior after patch: http://sd.comp.local immediately authenticates user (over insecure HTTP) and logs them in the http site (no redirection to 443/SSL/https site).
Please fix this immediately as it is a huge security risk!