Benarson Behajaina wrote:
>
> Hello everyone,
>
> It seems that Netscape Communicator 4.01 uses method GET
> instead of CONNECT. (Here, Squid 2.0 RELEASE)
>...
> So why Netscape used GET instead of CONNECT ?
This sounds like the problem reported by Henrik Nordstrom back in July, on
squid-users and also on the bugtraq mailing list. If so, the problem is a bug
in Netscape... See http://www.cineca.it/proxy/search/html/9807/192.html
for the archive copy of the message.
In summary, if you have the same hostname configured as proxy for http and
https URLs, then Netscape may send secure (https) requests to the http proxy
port as plain text, thus a security issue - should have been encrypted... -
as well as simply not working properly. Using an alias hostname for proxying
one of the services should be sufficient (so they "look different" to
Netscape), according to the original report - though that's little help if
you've a large number of individually configured client systems.
John Line
-- University of Cambridge WWW manager account (usually John Line) Send general WWW-related enquiries to webmaster@ucs.cam.ac.ukReceived on Thu Oct 15 1998 - 03:48:57 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:42:30 MST