Return-Path: 
 <dev-return-59190-apmail-httpd-dev-archive=httpd.apache.org@httpd.apache.org>
Delivered-To: apmail-httpd-dev-archive@www.apache.org
Received: (qmail 9669 invoked from network); 5 Nov 2007 15:19:54 -0000
Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2)
  by minotaur.apache.org with SMTP; 5 Nov 2007 15:19:54 -0000
Received: (qmail 9085 invoked by uid 500); 5 Nov 2007 15:19:38 -0000
Delivered-To: apmail-httpd-dev-archive@httpd.apache.org
Received: (qmail 9024 invoked by uid 500); 5 Nov 2007 15:19:37 -0000
Mailing-List: contact dev-help@httpd.apache.org; run by ezmlm
Precedence: bulk
Reply-To: dev@httpd.apache.org
list-help: <mailto:dev-help@httpd.apache.org>
list-unsubscribe: <mailto:dev-unsubscribe@httpd.apache.org>
List-Post: <mailto:dev@httpd.apache.org>
List-Id: <dev.httpd.apache.org>
Delivered-To: mailing list dev@httpd.apache.org
Received: (qmail 9013 invoked by uid 99); 5 Nov 2007 15:19:37 -0000
Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136)
    by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 05 Nov 2007 07:19:37 -0800
X-ASF-Spam-Status: No, hits=-4.0 required=10.0
	tests=RCVD_IN_DNSWL_MED,SPF_PASS
X-Spam-Check-By: apache.org
Received-SPF: pass (athena.apache.org: local policy)
Received: from [64.236.221.40] (HELO atmail5.turner.com) (64.236.221.40)
    by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 05 Nov 2007 15:19:41 +0000
X-IronPort-AV: E=Sophos;i="4.21,373,1188792000";
   d="scan'208";a="335585696"
Received: from atlbh02.turner.com ([10.188.157.232])
  by atliport02.turner.com with ESMTP; 05 Nov 2007 10:19:19 -0500
Received: from ATLMSG13.turner.com ([10.188.170.53]) by ATLBH02.turner.com
 with Microsoft SMTPSVC(6.0.3790.211);
	 Mon, 5 Nov 2007 10:19:18 -0500
Received: from 10.188.174.6 ([10.188.174.6]) by ATLMSG13.turner.com
 ([10.188.170.53]) via Exchange Front-End Server atlwebaccess.turner.com
 ([10.188.157.195]) with Microsoft Exchange Server HTTP-DAV ;
 Mon,  5 Nov 2007 15:19:18 +0000
User-Agent: Microsoft-Entourage/11.3.6.070618
Date: Mon, 05 Nov 2007 10:19:20 -0500
Subject: Re: Proxying subrequests
From: "Akins, Brian" <Brian.Akins@turner.com>
To: "dev@httpd.apache.org" <dev@httpd.apache.org>
Message-ID: <C3549EA8.9B084%Brian.Akins@turner.com>
Thread-Topic: Proxying subrequests
Thread-Index: Acgc4ckqDsOKWs2cTj27HDshH8+gAgC3XOuv
In-Reply-To: <472A65B2.4070800@holsman.net>
Mime-version: 1.0
Content-type: text/plain;
	charset="US-ASCII"
Content-transfer-encoding: 7bit
X-OriginalArrivalTime: 05 Nov 2007 15:19:18.0597 (UTC)
 FILETIME=[3C00F750:01C81FBF]
X-Virus-Checked: Checked by ClamAV on apache.org

On 11/1/07 6:48 PM, "Ian Holsman" <lists@holsman.net> wrote:

> Akins, Brian wrote:
>> -1 from me (if that counts.)
>> 
>> Using ProxyPass should be fine for 95% of the use cases??
>> 
>> ProxyPass /cnn http://www.cnn.com/
>> 
>> <!--#include virtual="/cnn/WORLD/index.html" -->
>>  
> 
> yes.
> if you:
> a. have a static small number of hosts
> b. those hosts don't change often
> 
> if either of these 2 conditions aren't met, then proxypass is next to
> useless.

True. (You could manage with a decent config tool, however.)

Couldn't some creative rewrite rules do the same thing:

RewriteCond %{IS_SUBREQ} true
RewriteRule ^/proxy/(.*) http://$1 [P,L]

Note: not sure if that will actually work.

I just foresee horrible cross-site type "vulnerabilities" in this.
 
If it is configurable on/off, then I'm -0.


-- 
Brian Akins
Chief Operations Engineer
Turner Digital Media Technologies