ons 2007-03-14 klockan 11:45 +0900 skrev Steven:
> Did you have any concerns with the patch that would allow NTLM auth to
> work on transparent requests if pipeline prefetching was enabled?
Hmm.. don't like it.
a) If allowing pipelining then it should be done on the same server
connection. Also I am not sure this (prefetching) works well together
with the tightly coupled connection pinning being done.. Well, I am even
convinced it doesn't as the authentication will be lost pretty much on
every new chain of pipelined request causing plenty of renegotiations.
b) This isn't related to transparent interception. The exact same
situation is seen in normal proxying.
If enabled we should pipeline the requests on the same server
connection, as they were sent to us by the client. But this requires a
bit bigger change in http.c.
Regards
Henrik
This archive was generated by hypermail pre-2.1.9 : Sun Apr 01 2007 - 12:00:01 MDT