On 11 Jan 2014, at 18:48, Eliezer Croitoru <eliezer_at_ngtech.co.il> wrote:
> So the issue is:
> # nc -v -x192.168.10.1:3128 -Xconnect 213.151.33.10 22
> nc: Proxy error: "HTTP/1.1 403 Forbidden"
> # nc -v -x192.168.10.1:3128 -Xconnect 213.151.33.10 22
> nc: Proxy error: "HTTP/1.1 200 Connection established"
>
> So as far as I understand the nc tool is compatible with 1.0 while not built for 1.1.
The version of nc/netcat that is shipped with RHEL5 and RHEL6 (and based on the OpenBSD implementation of netcat) has this problem with HTTP/1.1. The upstream OpenBSD implementation fixed this problem in September 2006, but it never made it in to the RHEL releases. I’ve discovered there was a redhat bug opened recently to get this fixed.
I haven’t explicitly tested it, but I think the version of nc included in OSX Mavericks may also suffer the same issue, based purely on running the ‘strings’ command against the nc binary.
Debian/Ubuntu appear to use the NMap implementation of netcat, which doesn’t appear to offer proxy support, so technically they aren’t affected :)
Simon
Received on Sat Jan 11 2014 - 23:10:48 MST
This archive was generated by hypermail 2.2.0 : Sun Jan 12 2014 - 12:00:05 MST