W3C home > Mailing lists > Public > ietf-http-wg@w3.org > April to June 2007

Re: protocol support for intercepting proxies

From: Adrien de Croy <adrien@qbik.com>
Date: Tue, 19 Jun 2007 13:46:31 +1200
Message-ID: <46773577.5040300@qbik.com>
To: Mark Andrews <Mark_Andrews@isc.org>
CC: Henrik Nordstrom <henrik@henriknordstrom.net>, HTTP Working Group <ietf-http-wg@w3.org>



Mark Andrews wrote:
>>
>>     
> 	To be perfectly honest.  Applications SHOULD have access to
> 	DHCP configuration results. 
>
>   
I wish :)

They should also be able to instigate DHCP_INFORM requests to request 
specific parameters from the DHCP server as well.

I don't see it happening any time soon though


>> So maybe DNS SRV records are the way to go here.  Some customers lock 
>> down even DNS though, since the proxy does the DNS lookup for normal 
>> proxy operations.  Also most OS provided DNS resolver implementations 
>> (i.e. winsock) only support A record lookups, so unless you want browser 
>> authors to write their own DNS resolvers (and deal with the 
>> configuration issues around that), they won't have much luck on many 
>> OSes even getting a SRV record.
>>     
>
> 	Most OS's support looking up any record you can think about.
>
> 	For Windows you need DNSQuery*().  Even the embedded versions
> 	of DNSQuery_W support SRV lookups.
> 	http://msdn2.microsoft.com/en-us/library/ms886653.aspx
>
>   

Interesting - thanks for that.

I can only find documentation on MSDN for this for CE and Windows Mobile 
though (trying to find out OS support).  We had no end of trouble trying 
to get a generic DNS resolver going for all versions of win32.  Even 
finding the DNS server to use is non-trivial on Win95.  That's the main 
reason WinGate has a spot where you can configure the DNS server to 
use.  I'd hate to see the day where browsers have to put up a UI for the 
DNS server to use for the SRV record lookup for proxy auto config :)

But thankfully win95 is mostly dead now anyway, except for in some less 
rich countries.

> 	The problem with SRV is that you need to know the query name.
>
>   
>> the one common factor that all browsers have is HTTP support.
>>
>> In the end, the best solutions may be platform-specific, i.e. Active 
>> Directory policy based, or extensions to network logons.  But I'm 
>> struggling :)
>>
>>
>> Adrien
>>
>>
>>     
>>> imho.
>>>
>>> Regards
>>> Henrik
>>>   
>>>       
>> -- 
>> Adrien de Croy - WinGate Proxy Server - http://www.wingate.com
>>
>>
>>     

-- 
Adrien de Croy - WinGate Proxy Server - http://www.wingate.com
Received on Tuesday, 19 June 2007 01:46:19 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Friday, 27 April 2012 06:50:10 GMT