hc-httpclient-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Michael Schaefer <...@spamblock.netzgehirn.de>
Subject Re: ProxyCredentials disclosed to remote host
Date Thu, 03 Nov 2005 20:28:54 GMT
On Thursday 03 November 2005 21:21, Oleg Kalnichevski wrote:

> Folks,
   Hi,

> I overreacted. This bug is NOT a release blocker and will not delay the
> final release of HttpClient 3.0.
>
> The bug does not affect any of the official releases of HttpClient. It
> only affects a few nightly builds and ONLY when the preemptive
> authentication is used, which is a really bad idea from the security
> standpoint.

Is there an other way than preemptive autentication to work around the problem 
with Squid 2.4 mentioned in Bug 37197 [1]?
 
The Squid 2.4 problem was the reason why I had to enable preemptive 
authentication.

[1] http://issues.apache.org/bugzilla/show_bug.cgi?id=37197

best wishes,
Michael 

---------------------------------------------------------------------
To unsubscribe, e-mail: httpclient-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: httpclient-user-help@jakarta.apache.org


Mime
View raw message