Locking throughout JCIFS has been changed to allow for more concurrency. Also, a small fix to the NtlmHttpFilter has been applied to set the UNAUTHORIZED status *before* setting contentLength(0).