Re: [users@httpd] MODIFIYING THE REMOTE_USER VARIABLE

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On 4/26/05, Bud P. Bruegger <bud@xxxxxxxxxxxxxxxxxx> wrote:
> At 12.12 22/04/2005 -0400, Joshua Slive wrote:
> > > Brian just proposed this:
> > >
> > > RewriteEngine On
> > > RewriteCond %{HTTP:HTTP_SOME_HEADER_FIELD} (.*)
> > > RewriteRule .* - [E=REMOTE_USER:%1]
> > >
> > > and it works for me on Apache 1.3.  So I assume that also 2.0 will work.
> >
> >As far as I know, this technique cannot be used to override the
> >standard CGI env variables, including REMOTE_USER.  In fact, it is not
> >possible at all to override these variables, which is generally a good
> >thing.
> >
> >Joshua.
> 
> Hmmm, it worked in 1.3 and I just checked a simple "SetEnv REMOTE_USER
> helloThere" in an Apache 2.0 and that is visible in the CGI script.  I'll
> test what Brian proposed later on (an Apache 2.0 behind another 2.0 that
> acts as reverse proxy).

I am fairly sure (although I haven't tested it recently) that you
can't OVERRIDE the REMOTE_USER.  You can probably set one if one isn't
being set through HTTP authentication.

Joshua.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
   "   from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx



[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux