Re: [squid-users] Host name stripped after authentication for https site

From: Tim Neto <tneto@dont-contact.us>
Date: Fri, 17 Sep 2004 15:36:14 -0400

3'rd option: If the "https" is an approved site for your business,
school, or whatever organization, configure Squid to not require
authentication for the site.

Tim

-----------------------------------------------------------
Timothy E. Neto
 Computer Systems Engineer Komatsu Canada Limited
 Ph#: 905-625-6292 x265 1725B Sismet Road
 Fax: 905-625-6348 Mississauga, Canada
 E-Mail: tneto@komatsu.ca L4W 1P9
-----------------------------------------------------------

Christoph Haas wrote:

>On Fri, Sep 17, 2004 at 07:23:30PM +0100, Martyn Bright wrote:
>
>
>>Forgive me if this is a FAQ, but I've trawled the archives and can't find a
>>solution that fits.
>>
>>
>
>It is... but it's not in the FAQ. :)
>
>
>
>>I have been using ncsa_auth and it works fine if I go to a site that uses
>>http://
>>
>>Unfortunately, if I try to go to any https site, the challenge response
>>seems to work ok, but I get a 400 Invalid URL message because something
>>seems to have stripped the host name from the URL. If I refresh the screen
>>or click on the "URL:" link, the page is then correctly displayed.
>>
>>I am using IE6 on XPP SP1 and have tried turning the assorted HTTP 1.1 flags
>>on and off to no avail.
>>
>>
>
>That's a very annoying IE bug. If the first page you request is a HTTPS
>page *and* your proxy asks for authentication then the IE will strip off
>the protocol part from the URL.
>
>IMHO there is no bug fix out there yet. So you either work around it by
>first calling a http:// page and after authenticating switch to the https://
>page. Or you use another browser.
>
> Christoph
>
>
>
Received on Fri Sep 17 2004 - 13:36:32 MDT

This archive was generated by hypermail pre-2.1.9 : Fri Oct 01 2004 - 12:00:02 MDT