Re: Chained proxies, persistent connections, authentication from Duane Wessels on 2003-10-23 (ietf-http-wg@w3.org from October to December 2003)

From: Duane Wessels <wessels@packet-pushers.com>
Date: Thu, 23 Oct 2003 14:50:10 -0600 (MDT)
To: ietf-http-wg@w3.org
Message-ID: <Pine.BSF.4.53.0310231443020.88839@life-gone-hazy.com>

> I don't recall how it was determinted that Proxy1 was forwarding proxy
> authentication headers to Proxy2. Sans a tcp/ip trace or comprehensive

FYI, this is a feature of Squid.  An admin can configure Squid to
forward the Proxy-Authorization header (without consuming it).

I would suggest that in this particular case, since both Squid and
"proxy2" are breaking the rules, the problem is solvable by disabling
server-side persistent connections in Squid.

Duane W.

Received on Thursday, 23 October 2003 16:55:29 UTC