[squid-users] squid as accelerator, users http header passthrough to acc'ed webserver

From: Sebastian Pein <Pein@dont-contact.us>
Date: Mon, 28 Jun 2004 11:05:16 +0200

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

hi list.

i have running apache 1.3 for a paysite with several virtual hosts. i
want to setup squid in accelerator mode to get capabilities of traffic
shaping/mgmt. this is running fine and with no problems.

the problem: apache should be protected by some kind of password
protection script to make password trading/sharing difficult (password
sentry, pennywize, arbitrary). all of these scripts use the http header
to get the source ip of the request. this does not fit into the setup
mentioned above. since all requests are derived from squid, all users
seam to use the same ip. squid puts the "x-forwarded-for" field into the
header.

is it possible to "translate" this to be the source of the request as it
is in the usual http scenario? or would this break the http transfer,
because of the accelerated apache to send back packets directly to the
client?

thanks for your ideas

sebastian
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (MingW32)

iD8DBQFA399MOKcrVizAAUIRAr4cAJ91btjPA7aqObd8TI33ZsFyrJuZrQCgmf6/
WNCl0bGpdYxaguPXZV2BZ/4=
=pvF8
-----END PGP SIGNATURE-----
Received on Mon Jun 28 2004 - 03:05:24 MDT

This archive was generated by hypermail pre-2.1.9 : Thu Jul 01 2004 - 12:00:03 MDT