cURL / Mailing Lists / curl-library / Single Mail

curl-library

Re: http proxies and ftp passwords

From: Michal Marek <mmarek_at_suse.cz>
Date: Tue, 09 Jun 2009 19:56:44 +0200

Daniel Stenberg napsal(a):
> On Mon, 8 Jun 2009, Michal Marek wrote:
>> Maybe this is a squid bug, but I didn't find anything relevant in the
>> RFCs. The question is: does it make sense for libcurl to insert the
>> username:password into the url when doing ftp via a proxy? Attached is
>> an incomplete patch doing this.
>
> Non-HTTP protocols over HTTP proxies is an area outside of all the specs
> so it's not really possible to tell who's right or wrong here. Squid is
> a widely used proxy so that should be reason enough for us to seriously
> consider this.

OK.

> The only thing I fear is that there's another proxy out there with the
> reversed preference...

You mean ignoring the user:password in the ftp url and requiring an
Authorization: Basic header instead? Hopefully my patch should not make
it worse :).

Michal
Received on 2009-06-09