You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@httpd.apache.org by Marc Slemko <ma...@znep.com> on 1997/09/25 01:40:52 UTC
mod_proxy/1163: Proxy Server does not forward http://user:passwd@site correctly (fwd)
Erm... that is never supposed to be port of a URL passed to a HTTP server
is it?
---------- Forwarded message ----------
Date: Wed, 24 Sep 1997 13:50:02 -0700 (PDT)
From: Fredy Paquet <fp...@opag.ch>
To: apache-bugdb@apache.org
Cc: apache-bugdb@apache.org
Subject: mod_proxy/1163: Proxy Server does not forward http://user:passwd@site correctly
>Number: 1163
>Category: mod_proxy
>Synopsis: Proxy Server does not forward http://user:passwd@site correctly
>Confidential: no
>Severity: non-critical
>Priority: medium
>Responsible: apache (Apache HTTP Project)
>State: open
>Class: sw-bug
>Submitter-Id: apache
>Arrival-Date: Wed Sep 24 13:50:02 1997
>Originator: fp@opag.ch
>Organization:
apache
>Release: 1.2.4
>Environment:
Sun Solaris 2.4 / gcc 2.7.1
Netscape 3.0.1
>Description:
Trying to access a password protected ftp site via proxy will always
result in the same error message:
Bad Request
Your browser sent a request that this server could not understand.
---
Additional info:
- Connecting directly w/o proxy is working
- Connecting via Cern Proxy server is working
- Connecting via Apache 1.2.1 or 1.2.4 is NOT WORKING
>How-To-Repeat:
>Fix:
>Audit-Trail:
>Unformatted:
Re: mod_proxy/1163: Proxy Server does not forward http://user:passwd@site correctly (fwd)
Posted by Dean Gaudet <dg...@arctic.org>.
If it's not in the RFC then we don't need to support it. Ask what is
generating it maybe ...
Dean
On Thu, 25 Sep 1997, Marc Slemko wrote:
> It may be a valid URL with a http prefix, but I don't see any reason to
> think it is a valid URL to be sent to a HTTP server, proxy or otherwise.
>
> RFC1738 does not say that such things are valid. I have seen references
> to things generating them before too, but I do not understand the reason
> unless it is from before proxy authentication existed. I would suggest
> saying "that is a boneheaded thing to do, so we don't support it". Anyone
> agree?
>
> On Thu, 25 Sep 1997, Dean Gaudet wrote:
>
> > No I think this is a valid http URL. I've seen it used before. But it
> > might just be a netscape extension.
> >
> > Dean
> >
> > On Thu, 25 Sep 1997, Ben Laurie wrote:
> >
> > > Marc Slemko wrote:
> > > >
> > > > Erm... that is never supposed to be port of a URL passed to a HTTP server
> > > > is it?
> > >
> > > It is also my understanding that FTP URLs start "ftp:"...
> > >
> > > Cheers,
> > >
> > > Ben.
> > >
> > > >
> > > > ---------- Forwarded message ----------
> > > > Date: Wed, 24 Sep 1997 13:50:02 -0700 (PDT)
> > > > From: Fredy Paquet <fp...@opag.ch>
> > > > To: apache-bugdb@apache.org
> > > > Cc: apache-bugdb@apache.org
> > > > Subject: mod_proxy/1163: Proxy Server does not forward http://user:passwd@site correctly
> > > >
> > > > >Number: 1163
> > > > >Category: mod_proxy
> > > > >Synopsis: Proxy Server does not forward http://user:passwd@site correctly
> > > > >Confidential: no
> > > > >Severity: non-critical
> > > > >Priority: medium
> > > > >Responsible: apache (Apache HTTP Project)
> > > > >State: open
> > > > >Class: sw-bug
> > > > >Submitter-Id: apache
> > > > >Arrival-Date: Wed Sep 24 13:50:02 1997
> > > > >Originator: fp@opag.ch
> > > > >Organization:
> > > > apache
> > > > >Release: 1.2.4
> > > > >Environment:
> > > > Sun Solaris 2.4 / gcc 2.7.1
> > > > Netscape 3.0.1
> > > > >Description:
> > > > Trying to access a password protected ftp site via proxy will always
> > > > result in the same error message:
> > > >
> > > > Bad Request
> > > > Your browser sent a request that this server could not understand.
> > > >
> > > > ---
> > > > Additional info:
> > > > - Connecting directly w/o proxy is working
> > > > - Connecting via Cern Proxy server is working
> > > > - Connecting via Apache 1.2.1 or 1.2.4 is NOT WORKING
> > > > >How-To-Repeat:
> > > >
> > > > >Fix:
> > > >
> > > > >Audit-Trail:
> > > > >Unformatted:
> > >
> > > --
> > > Ben Laurie |Phone: +44 (181) 994 6435|Apache Group member
> > > Freelance Consultant |Fax: +44 (181) 994 6472|http://www.apache.org
> > > and Technical Director|Email: ben@algroup.co.uk |Apache-SSL author
> > > A.L. Digital Ltd, |http://www.algroup.co.uk/Apache-SSL
> > > London, England. |"Apache: TDG" http://www.ora.com/catalog/apache
> > >
> >
>
>
Re: mod_proxy/1163: Proxy Server does not forward http://user:passwd@site correctly (fwd)
Posted by Marc Slemko <ma...@worldgate.com>.
It may be a valid URL with a http prefix, but I don't see any reason to
think it is a valid URL to be sent to a HTTP server, proxy or otherwise.
RFC1738 does not say that such things are valid. I have seen references
to things generating them before too, but I do not understand the reason
unless it is from before proxy authentication existed. I would suggest
saying "that is a boneheaded thing to do, so we don't support it". Anyone
agree?
On Thu, 25 Sep 1997, Dean Gaudet wrote:
> No I think this is a valid http URL. I've seen it used before. But it
> might just be a netscape extension.
>
> Dean
>
> On Thu, 25 Sep 1997, Ben Laurie wrote:
>
> > Marc Slemko wrote:
> > >
> > > Erm... that is never supposed to be port of a URL passed to a HTTP server
> > > is it?
> >
> > It is also my understanding that FTP URLs start "ftp:"...
> >
> > Cheers,
> >
> > Ben.
> >
> > >
> > > ---------- Forwarded message ----------
> > > Date: Wed, 24 Sep 1997 13:50:02 -0700 (PDT)
> > > From: Fredy Paquet <fp...@opag.ch>
> > > To: apache-bugdb@apache.org
> > > Cc: apache-bugdb@apache.org
> > > Subject: mod_proxy/1163: Proxy Server does not forward http://user:passwd@site correctly
> > >
> > > >Number: 1163
> > > >Category: mod_proxy
> > > >Synopsis: Proxy Server does not forward http://user:passwd@site correctly
> > > >Confidential: no
> > > >Severity: non-critical
> > > >Priority: medium
> > > >Responsible: apache (Apache HTTP Project)
> > > >State: open
> > > >Class: sw-bug
> > > >Submitter-Id: apache
> > > >Arrival-Date: Wed Sep 24 13:50:02 1997
> > > >Originator: fp@opag.ch
> > > >Organization:
> > > apache
> > > >Release: 1.2.4
> > > >Environment:
> > > Sun Solaris 2.4 / gcc 2.7.1
> > > Netscape 3.0.1
> > > >Description:
> > > Trying to access a password protected ftp site via proxy will always
> > > result in the same error message:
> > >
> > > Bad Request
> > > Your browser sent a request that this server could not understand.
> > >
> > > ---
> > > Additional info:
> > > - Connecting directly w/o proxy is working
> > > - Connecting via Cern Proxy server is working
> > > - Connecting via Apache 1.2.1 or 1.2.4 is NOT WORKING
> > > >How-To-Repeat:
> > >
> > > >Fix:
> > >
> > > >Audit-Trail:
> > > >Unformatted:
> >
> > --
> > Ben Laurie |Phone: +44 (181) 994 6435|Apache Group member
> > Freelance Consultant |Fax: +44 (181) 994 6472|http://www.apache.org
> > and Technical Director|Email: ben@algroup.co.uk |Apache-SSL author
> > A.L. Digital Ltd, |http://www.algroup.co.uk/Apache-SSL
> > London, England. |"Apache: TDG" http://www.ora.com/catalog/apache
> >
>
Re: mod_proxy/1163: Proxy Server does not forward http://user:pa
Posted by Lars Eilebrecht <La...@unix-ag.org>.
According to Dean Gaudet:
> No I think this is a valid http URL. I've seen it used before. But it
> might just be a netscape extension.
Most browsers accept such URLs but the values are internally converted
and used in a basic authentication header.
ciao...
--
Lars Eilebrecht - No one is perfect...
sfx@unix-ag.org - but some of us are closer than others.
http://www.si.unix-ag.org/~sfx/
Re: mod_proxy/1163: Proxy Server does not forward http://user:passwd@site correctly (fwd)
Posted by Ben Laurie <be...@algroup.co.uk>.
James Morris wrote:
>
> On Thu, 25 Sep 1997, Dean Gaudet wrote:
>
> > No I think this is a valid http URL. I've seen it used before. But it
> > might just be a netscape extension.
> >
>
> RFC 1738 indicates that this syntax is valid for FTP but not HTTP.
I believe Netscape convert it into basic auth on HTTP.
Cheers,
Ben.
--
Ben Laurie |Phone: +44 (181) 994 6435|Apache Group member
Freelance Consultant |Fax: +44 (181) 994 6472|http://www.apache.org
and Technical Director|Email: ben@algroup.co.uk |Apache-SSL author
A.L. Digital Ltd, |http://www.algroup.co.uk/Apache-SSL
London, England. |"Apache: TDG" http://www.ora.com/catalog/apache
Re: mod_proxy/1163: Proxy Server does not forward http://user:passwd@site correctly (fwd)
Posted by James Morris <jm...@intercode.com.au>.
On Thu, 25 Sep 1997, Dean Gaudet wrote:
> No I think this is a valid http URL. I've seen it used before. But it
> might just be a netscape extension.
>
RFC 1738 indicates that this syntax is valid for FTP but not HTTP.
- James.
--
James Morris
<jm...@intercode.com.au>
http://www.intercode.com.au/
Re: mod_proxy/1163: Proxy Server does not forward http://user:passwd@site correctly (fwd)
Posted by Dean Gaudet <dg...@arctic.org>.
No I think this is a valid http URL. I've seen it used before. But it
might just be a netscape extension.
Dean
On Thu, 25 Sep 1997, Ben Laurie wrote:
> Marc Slemko wrote:
> >
> > Erm... that is never supposed to be port of a URL passed to a HTTP server
> > is it?
>
> It is also my understanding that FTP URLs start "ftp:"...
>
> Cheers,
>
> Ben.
>
> >
> > ---------- Forwarded message ----------
> > Date: Wed, 24 Sep 1997 13:50:02 -0700 (PDT)
> > From: Fredy Paquet <fp...@opag.ch>
> > To: apache-bugdb@apache.org
> > Cc: apache-bugdb@apache.org
> > Subject: mod_proxy/1163: Proxy Server does not forward http://user:passwd@site correctly
> >
> > >Number: 1163
> > >Category: mod_proxy
> > >Synopsis: Proxy Server does not forward http://user:passwd@site correctly
> > >Confidential: no
> > >Severity: non-critical
> > >Priority: medium
> > >Responsible: apache (Apache HTTP Project)
> > >State: open
> > >Class: sw-bug
> > >Submitter-Id: apache
> > >Arrival-Date: Wed Sep 24 13:50:02 1997
> > >Originator: fp@opag.ch
> > >Organization:
> > apache
> > >Release: 1.2.4
> > >Environment:
> > Sun Solaris 2.4 / gcc 2.7.1
> > Netscape 3.0.1
> > >Description:
> > Trying to access a password protected ftp site via proxy will always
> > result in the same error message:
> >
> > Bad Request
> > Your browser sent a request that this server could not understand.
> >
> > ---
> > Additional info:
> > - Connecting directly w/o proxy is working
> > - Connecting via Cern Proxy server is working
> > - Connecting via Apache 1.2.1 or 1.2.4 is NOT WORKING
> > >How-To-Repeat:
> >
> > >Fix:
> >
> > >Audit-Trail:
> > >Unformatted:
>
> --
> Ben Laurie |Phone: +44 (181) 994 6435|Apache Group member
> Freelance Consultant |Fax: +44 (181) 994 6472|http://www.apache.org
> and Technical Director|Email: ben@algroup.co.uk |Apache-SSL author
> A.L. Digital Ltd, |http://www.algroup.co.uk/Apache-SSL
> London, England. |"Apache: TDG" http://www.ora.com/catalog/apache
>
Re: mod_proxy/1163: Proxy Server does not forward http://user:passwd@site correctly (fwd)
Posted by Ben Laurie <be...@algroup.co.uk>.
Marc Slemko wrote:
>
> Erm... that is never supposed to be port of a URL passed to a HTTP server
> is it?
It is also my understanding that FTP URLs start "ftp:"...
Cheers,
Ben.
>
> ---------- Forwarded message ----------
> Date: Wed, 24 Sep 1997 13:50:02 -0700 (PDT)
> From: Fredy Paquet <fp...@opag.ch>
> To: apache-bugdb@apache.org
> Cc: apache-bugdb@apache.org
> Subject: mod_proxy/1163: Proxy Server does not forward http://user:passwd@site correctly
>
> >Number: 1163
> >Category: mod_proxy
> >Synopsis: Proxy Server does not forward http://user:passwd@site correctly
> >Confidential: no
> >Severity: non-critical
> >Priority: medium
> >Responsible: apache (Apache HTTP Project)
> >State: open
> >Class: sw-bug
> >Submitter-Id: apache
> >Arrival-Date: Wed Sep 24 13:50:02 1997
> >Originator: fp@opag.ch
> >Organization:
> apache
> >Release: 1.2.4
> >Environment:
> Sun Solaris 2.4 / gcc 2.7.1
> Netscape 3.0.1
> >Description:
> Trying to access a password protected ftp site via proxy will always
> result in the same error message:
>
> Bad Request
> Your browser sent a request that this server could not understand.
>
> ---
> Additional info:
> - Connecting directly w/o proxy is working
> - Connecting via Cern Proxy server is working
> - Connecting via Apache 1.2.1 or 1.2.4 is NOT WORKING
> >How-To-Repeat:
>
> >Fix:
>
> >Audit-Trail:
> >Unformatted:
--
Ben Laurie |Phone: +44 (181) 994 6435|Apache Group member
Freelance Consultant |Fax: +44 (181) 994 6472|http://www.apache.org
and Technical Director|Email: ben@algroup.co.uk |Apache-SSL author
A.L. Digital Ltd, |http://www.algroup.co.uk/Apache-SSL
London, England. |"Apache: TDG" http://www.ora.com/catalog/apache