httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Pieter Vanmeerbeek" <pie...@vanmeerbeek.net>
Subject RE: [users@httpd] Header set & WWW-Authenticate
Date Thu, 27 Sep 2007 07:59:32 GMT
Hi,

Thanks for this answer. I'll try it.

I do have another question:  I'm using an owa 2000 as backend server and I
noticed this owa does not always behave regarding to sessions.
I'm using apache 2.2 as reverse proxy which will send a keepalive in the
back-end connection  to recycle and optimize the connections;

Unfortunatly the owa 2000 misbehaves himself by sending data of already
authenticated users to newly unregistered connected users (for example the
folder overview). Further inspection learns that the owa sometimes ignores
the presence or absence of session data.

To solve this I wanted to disable the keepalive function on the backend
connection (resulting in lower performance but more secure).
A dump shows a 'Connection: keepalive' header in the initial connection from
apache to the owa server.

I've tried using the 'KeepAlive Off' option and the 'setEnv nokeepalive'
option and even the 'Header unset Connection' and 'RequestHeader unset
Connection' options.
None of them seem to work.

Can anyone explain me what I'm doing wrong? 
Kind regards
Pieter
 

-----Original Message-----
From: jslive@gmail.com [mailto:jslive@gmail.com] On Behalf Of Joshua Slive
Sent: woensdag 26 september 2007 15:14
To: users@httpd.apache.org
Subject: Re: [users@httpd] Header set & WWW-Authenticate

On 9/26/07, Pieter Vanmeerbeek <pieter@vanmeerbeek.net> wrote:

> Header edit WWW-Authenticate: ^NTLM dummy
>
>
> Unfortunatly doing this results in removal of all WWW-Authenticate 
> headers except for the Negotiate instead of modification of the headers.
> Headers sent to client :
> WWW-Authenticate: Negotiate
>
>
> Can anyone help me and tell me what I'm doing wrong?

The problem is that, in HTTP, multiple identical headers are equivalent to a
single header with all the values folded together. So I don't believe there
is a way in apache to target just one of the headers. Why don't you instead
try something like

SetEnvIf WWW-Authenticate NTLM gotntlm=yes Header set WWW-Authenticate Basic
realm="x.x.x.x" env=gotntlm

Joshua.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org





---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message