On Fri, 28 Nov 2003, Hrvoje Niksic's patch:
> This patch implements a first attempt of using the CONNECT method to
> establish passthrough of SSL communication over non-SSL proxies. This will
> require testing.
I find this wording a bit funny. What is a "non-SSL" proxy? CONNECT is the
defined way to speak SSL when using a http proxy...
> + /* #### This does not appear right. Can't the proxy request,
> + say, `Digest' authentication? */
Right, the proxy can of course require Digest (or other kinds of)
authentication. The 'A2' encoded chunk needs the 'CONNECT' string then.
Also, I couldn't really tell from this patch, but make sure that you don't
accidentally pass on the proxy authentication in the following request to the
actual remote server as well.
--
-=- Daniel Stenberg -=- http://daniel.haxx.se -=-
ech`echo xiun|tr nu oc|sed 'sx\([sx]\)\([xoi]\)xo un\2\1 is xg'`ol
