The discusion has shown one bug/misfeature and a number of interesting
extensions. The following is a list of open tasks found:
* Add a configuration directive for enabling WWW authentication in the
proxy (only to be used in accelerators, must not be enabled by default).
The current "automatic" mode is not acceptable for production as it
confuses transparent proxies. [HIGH PRIORITY]
* Filter out NTLM authentication from server replies. If no scheme is
left then also change the HTTP reply code to 403. [LOW PRIORITY]
* NTLM proxying using user-connection-pinned server connections
(WARNING: Puts the user at risk if there is other non-NTLM aware proxies
between us and the user) [NICE FEATURE]
* Basic->NTLM gatewaying using user pinned connections (pinned to a
Basic HTTP header value, not a connection or proxy_auth user). [NICE
FEATURE]
* Basic->Digest gatewaying [NICE FEATURE]
/Henrik
Received on Fri Apr 13 2001 - 02:47:13 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:13:45 MST