[3054] in WWW Security List Archive
Re: Client->Proxy Authentification
daemon@ATHENA.MIT.EDU (Brian W. Spolarich)
Tue Sep 24 18:23:16 1996
Date: Tue, 24 Sep 1996 16:52:42 -0400 (EDT)
From: "Brian W. Spolarich" <briansp@ans.net>
To: "Maria Jose Yanez Freire (Paco)" <myanez@ait.uvigo.es>
cc: www-security@ns2.rutgers.edu
In-Reply-To: <9609241334.AA14435@jucar.ait.uvigo.es>
Errors-To: owner-www-security@ns2.rutgers.edu
On Tue, 24 Sep 1996, Maria Jose Yanez Freire (Paco) wrote:
> I'm implementing a web proxy in an UNIX system and I need to know the
> uid of the client process who is connected to my proxy. HTTP
> authenfication mecanism is not a good solution because is designed to
> authentificate a user with a server, not a proxy. Another solution is
> the port 113 daemon defined in RFC 931 (used by NCSA 1.5 server) but
> many computers doesn't run this daemon.
How would you get the UID of a Macintosh or PC-based client? Or is your
proxy only going to service Unix clients?
There isn't a reliable way to determine this information. identd isn't
really a useful service, since the information provided is completely
voluntary, can be easily faked, and is hardly ubiquitous.
Maybe if you describe what you're trying to accomplish someone might be
able to suggest alternatives...
-b.
--
Brian W. Spolarich - ANS - briansp@ans.net - (313)677-7311
Alice and Bob aren't speaking anymore. She lost his public key.
