Hi,
At 10.42 06/02/2005, Glenn Baptista wrote:
>Hi Guido,
>
>Yes putting the acl statement does work. Thanks for that hint very much!!!
>#Have added the lines like you suggested:
>acl Java browser Java/1.1 Java/1.2 Java/1.3 Java/1.4 Java/1.5
>http_access allow Java
># Also have the lines
>acl Grp proxy_auth REQUIRED
>http_access allow Grp
>
>Seems to work with the 1.4 and 1.5 plugins. Will test also for the base
>1.1.8.
>In the access_log file, all java driven requests only have the IP; whereas
>all other browser requests also have the identity of the user.
>
>Thanks once again
Good, but don't forget that with this workaround there are some security
implications:
Faking the browser user agent it's possible to use your proxy without
authentication.
Regards
Guido
-
========================================================
Guido Serassio
Acme Consulting S.r.l. - Microsoft Certified Partner
Via Gorizia, 69 10136 - Torino - ITALY
Tel. : +39.011.3249426 Fax. : +39.011.3293665
Email: guido.serassio@acmeconsulting.it
WWW: http://www.acmeconsulting.it/
Received on Sun Feb 06 2005 - 02:58:25 MST
This archive was generated by hypermail pre-2.1.9 : Tue Mar 01 2005 - 12:00:01 MST