On 2002-Apr-04 at 02:24:41 -0800, Bardur Arantsson wrote:
> I have put together a patch for supporting "Basic" HTTP Proxy
> Authentication. The patch changes the interpretatio of the RSYNC_PROXY
> environment variable so that the syntax
>
> user:pass@proxy.foo:port
>
> may be used instead of just
>
> proxy.foo:port
>
> (the old syntax is of course still supported).
There is a problem with the way this syntax is being handled by the
patch. It's because of the way it detects the "@" that separates
user:pass and host:port. It fails because the username and/or password
could have[0] an "@" in them.
This is basically a problem if some user whould like to use (e.g.)
radius realms[2], in order that the username becomes something like
username@realm.
> The patch has only been tested lightly, but it should(TM)
> work.
Yeah. Actually the guys from Gentoo are including this patch in the
rsync 2.5.6 package.
(Note: Please CC to me, as I'm not subscribed to the list)
[0] RFC 2617 (HTTP Autentication) defines the userid field as TEXT[1]
excluding ":".
[1] RFC 2616 (HTTP) defines TEXT as any OCTECT (any 8-bit sequence of
data) except CLTs, but including LWS.
[2] RFC 2138 (Radius) defines a field as "name@fqdn"
--
Alvaro Figueroa