Hi, Thanks for this answer. I'll try it. I do have another question: I'm using an owa 2000 as backend server and I noticed this owa does not always behave regarding to sessions. I'm using apache 2.2 as reverse proxy which will send a keepalive in the back-end connection to recycle and optimize the connections; Unfortunatly the owa 2000 misbehaves himself by sending data of already authenticated users to newly unregistered connected users (for example the folder overview). Further inspection learns that the owa sometimes ignores the presence or absence of session data. To solve this I wanted to disable the keepalive function on the backend connection (resulting in lower performance but more secure). A dump shows a 'Connection: keepalive' header in the initial connection from apache to the owa server. I've tried using the 'KeepAlive Off' option and the 'setEnv nokeepalive' option and even the 'Header unset Connection' and 'RequestHeader unset Connection' options. None of them seem to work. Can anyone explain me what I'm doing wrong? Kind regards Pieter -----Original Message----- From: jslive@xxxxxxxxx [mailto:jslive@xxxxxxxxx] On Behalf Of Joshua Slive Sent: woensdag 26 september 2007 15:14 To: users@xxxxxxxxxxxxxxxx Subject: Re: Header set & WWW-Authenticate On 9/26/07, Pieter Vanmeerbeek <pieter@xxxxxxxxxxxxxxx> wrote: > Header edit WWW-Authenticate: ^NTLM dummy > > > Unfortunatly doing this results in removal of all WWW-Authenticate > headers except for the Negotiate instead of modification of the headers. > Headers sent to client : > WWW-Authenticate: Negotiate > > > Can anyone help me and tell me what I'm doing wrong? The problem is that, in HTTP, multiple identical headers are equivalent to a single header with all the values folded together. So I don't believe there is a way in apache to target just one of the headers. Why don't you instead try something like SetEnvIf WWW-Authenticate NTLM gotntlm=yes Header set WWW-Authenticate Basic realm="x.x.x.x" env=gotntlm Joshua. --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|