Hi Guido,
Yes, understand the security implications; thanks for pointing them out; will use the workaround in a safe environment.
Thanks
Glenn
Serassio Guido wrote:
Hi,
At 10.42 06/02/2005, Glenn Baptista wrote:
Hi Guido,
Yes putting the acl statement does work. Thanks for that hint very much!!!
#Have added the lines like you suggested:
acl Java browser Java/1.1 Java/1.2 Java/1.3 Java/1.4 Java/1.5
http_access allow Java
# Also have the lines
acl Grp proxy_auth REQUIRED
http_access allow Grp
Seems to work with the 1.4 and 1.5 plugins. Will test also for the base 1.1.8.
In the access_log file, all java driven requests only have the IP; whereas all other browser requests also have the identity of the user.
Thanks once again
Good, but don't forget that with this workaround there are some security implications:
Faking the browser user agent it's possible to use your proxy without authentication.
Regards
Guido
- ======================================================== Guido Serassio Acme Consulting S.r.l. - Microsoft Certified Partner Via Gorizia, 69 10136 - Torino - ITALY Tel. : +39.011.3249426 Fax. : +39.011.3293665 Email: guido.serassio@xxxxxxxxxxxxxxxxx WWW: http://www.acmeconsulting.it/
