On Wed, 27 Jun 2007 00:31:56 +0200
Henrik Nordstrom <henrik@xxxxxxxxxxxxxxxxxxx> wrote:
> tis 2007-06-26 klockan 14:50 +0200 skrev Joerg Schuetter:
>
> > > > Digging a little bit deeper with a sniffer I found that the
> > > > header line CONNECT is missing. The older squid version
> > > > (2.5.12-4) seemed to ignore this.
> > >
> > > ???
> > >
> > > Can you provide a bit more details on that?
> >
> > Here is the header from the client which caused the error:
> > User-Agent: Mozilla/4.0 (Windows 2003 5.2) Java/1.4.2_06
> > Host: keylink.ubs.com
> > Accept: text/html, image/gif, image/jpeg, *; q=.2, */*; q=.2
> > Proxy-authorization: NTLM ...
>
> That's indeed not a valid request. No version of Squid will accept
> that.
>
> Is this a decoded TCP stream, or are you looking at an individual
> packet? For reliable results you need to decode the TCP stream. Easily
> done using wireshark/ethereal.
This was a snipped of the decoded stream captured w/ tshark.
Below you'll see the streams which caused the problem (some parts
of the header have been shortened/modifyed by me).
In the capture I had more requests and replys which worked, but
these had not "Java" in the User-Agent line.
Is there an option to send only "Basic" auth-requests to clients
which are identified as java applets? Maybe this could help
solving this issue.
request:
CONNECT keylink.ubs.com:443 HTTP/1.1
User-Agent: Mozilla/4.0 (Windows 2003 5.2) Java/1.4.2_06
Host: keylink.ubs.com
Accept: text/html, image/gif, image/jpeg, *; q=.2, */*; q=.2
reply:
HTTP/1.0 407 Proxy Authentication Required
Server: squid/2.6.STABLE5
Date: Wed, 20 Jun 2007 08:25:31 GMT
Content-Type: text/html
Content-Length: 1321
Expires: Wed, 20 Jun 2007 08:25:31 GMT
X-Squid-Error: ERR_CACHE_ACCESS_DENIED 0
Proxy-Authenticate: NTLM
Proxy-Authenticate: Basic realm="Squid proxy-caching web server"
X-Cache: MISS from myhostname.domain.com
X-Cache-Lookup: NONE from myhostname.domain.com:3128
Via: 1.0 myhostname.domain.com:3128 (squid/2.6.STABLE5)
Proxy-Connection: close
request:
CONNECT keylink.ubs.com:443 HTTP/1.1
User-Agent: Mozilla/4.0 (Windows 2003 5.2) Java/1.4.2_06
Host: keylink.ubs.com
Accept: text/html, image/gif, image/jpeg, *; q=.2, */*; q=.2
Proxy-authorization: NTLM (~80 chars)
reply:
HTTP/1.0 407 Proxy Authentication Required
Server: squid/2.6.STABLE5
Date: Wed, 20 Jun 2007 08:25:31 GMT
Content-Type: text/html
Content-Length: 1321
Expires: Wed, 20 Jun 2007 08:25:31 GMT
X-Squid-Error: ERR_CACHE_ACCESS_DENIED 0
Proxy-Authenticate: NTLM (~250 chars)
X-Cache: MISS from myhostname.domain.com
X-Cache-Lookup: NONE from myhostname.domain.com:3128
Via: 1.0 myhostname.domain.com:3128 (squid/2.6.STABLE5)
Proxy-Connection: close
request:
User-Agent: Mozilla/4.0 (Windows 2003 5.2) Java/1.4.2_06
Host: keylink.ubs.com
Accept: text/html, image/gif, image/jpeg, *; q=.2, */*; q=.2
Proxy-authorization: NTLM (~230 chars)
reply (removed html tags):
ERROR: The requested URL could not be retrieved
ERROR
The requested URL could not be retrieved
While trying to process the request:
User-Agent: Mozilla/4.0 (Windows 2003 5.2) Java/1.4.2_06
Host: keylink.ubs.com
Accept: text/html, image/gif, image/jpeg, *; q=.2, */*; q=.2
Proxy-authorization: NTLM (~230 chars)
The following error was encountered:
Invalid Request
Regards
Jörg
