hc-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Ortwin Glück <...@odi.ch>
Subject Re: DO NOT REPLY [Bug 37345] - ProxyCredentials disclosed to remote host
Date Fri, 04 Nov 2005 14:05:05 GMT
Sorry, Oleg,

I don't understand this. Why does the presence of the 
Proxy-Authorization depend on the connection being SSL or not?
I think the Proxy-Authorization header must never be sent to the target 
host. Could you clarify this, please?

Odi

bugzilla@apache.org wrote:
> DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG·
> RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
> <http://issues.apache.org/bugzilla/show_bug.cgi?id=37345>.
> ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND·
> INSERTED IN THE BUG DATABASE.
> 
> http://issues.apache.org/bugzilla/show_bug.cgi?id=37345
> 
> 
> olegk@apache.org changed:
> 
>            What    |Removed                     |Added
> ----------------------------------------------------------------------------
>   Attachment #16871|0                           |1
>         is obsolete|                            |
> 
> 
> 
> 
> ------- Additional Comments From olegk@apache.org  2005-11-04 14:58 -------
> Created an attachment (id=16873)
>  --> (http://issues.apache.org/bugzilla/attachment.cgi?id=16873&action=view)
> Patch (take 2)
> 
> Fix + test case. Please review
> 
> Oleg
> 


---------------------------------------------------------------------
To unsubscribe, e-mail: httpclient-dev-unsubscribe@jakarta.apache.org
For additional commands, e-mail: httpclient-dev-help@jakarta.apache.org


Mime
View raw message