From the CNTLM man page:
But please note that NTLM WWW auth (that is auth to HTTP servers), when it is running without any parent proxy as a standalone proxy server in itself, won’t probably be implemented ever. Even though the tasks share common NTLM authentication, they are different things. Also, I’ve never seen any access-protected HTTP server requiring solely NTLM without any alternative. Such a narrow-spectrum tool can be written in Perl in a few minutes. I strive to keep the code of cntlm simple and efficient.
“Never seen that”? Well, allow me to introduce to you: The Open Universiteit :s.
And yes, me and perl won’t see eye to eye in “a few minutes”.