Re: [squid-users] Problem with applet files embedded within html???

From: Glenn Baptista <glenn@dont-contact.us>
Date: Sun, 06 Feb 2005 15:59:13 +0530

Hi Guido,

Yes, understand the security implications; thanks for pointing them out;
will use the workaround in a safe environment.

Thanks

Glenn

Serassio Guido wrote:

> Hi,
>
> At 10.42 06/02/2005, Glenn Baptista wrote:
>
>> Hi Guido,
>>
>> Yes putting the acl statement does work. Thanks for that hint very
>> much!!!
>> #Have added the lines like you suggested:
>> acl Java browser Java/1.1 Java/1.2 Java/1.3 Java/1.4 Java/1.5
>> http_access allow Java
>> # Also have the lines
>> acl Grp proxy_auth REQUIRED
>> http_access allow Grp
>>
>> Seems to work with the 1.4 and 1.5 plugins. Will test also for the
>> base 1.1.8.
>> In the access_log file, all java driven requests only have the IP;
>> whereas all other browser requests also have the identity of the user.
>>
>> Thanks once again
>
>
> Good, but don't forget that with this workaround there are some
> security implications:
> Faking the browser user agent it's possible to use your proxy without
> authentication.
>
> Regards
>
> Guido
>
>
>
> -
> ========================================================
> Guido Serassio
> Acme Consulting S.r.l. - Microsoft Certified Partner
> Via Gorizia, 69 10136 - Torino - ITALY
> Tel. : +39.011.3249426 Fax. : +39.011.3293665
> Email: guido.serassio@acmeconsulting.it
> WWW: http://www.acmeconsulting.it/
>
>
Received on Sun Feb 06 2005 - 03:27:28 MST

This archive was generated by hypermail pre-2.1.9 : Tue Mar 01 2005 - 12:00:01 MST