[neon] neon, SSPI, and mod_auth_kerb

[Christopher Mason]

Hello.



I'm using the code described here:

<http://mailman.webdav.org/pipermail/neon/2005-January/001849.html>

I build thus:

















Thanks very much for any help you could give,

-c


--
[ Christopher Mason  MPRC Bioinformatics  http://proteomics ]
sspiInit
sspi: Loading security dll.
sspi: Loading of security dll [ok].
sspi: Obtaining security interface [ok].
sspi: Security Function Table [ok].
sspi: sspiInit [1].
HTTP session to http://proteomics.mayo.edu:80 begins.
HTTP session to http://proteomics.mayo.edu:80 begins.
Debugging enabled with mask 15
Enabling debugging
ah_create, for WWW-Authenticate
Doing DNS lookup on proteomics.mayo.edu...
Running pre_send hooks
Not handling session.
compress: Initialization.
compress: Initialization.
Sending request headers:
PROPFIND /testsrc HTTP/1.1
Host: proteomics.mayo.edu
User-Agent: SVN/1.3.0 (dev build) neon/0.25.2
Keep-Alive:
Connection: TE, Keep-Alive
TE: trailers
Content-Length: 308
Content-Type: text/xml
Depth: 0
Accept-Encoding: gzip
Accept-Encoding: gzip

Sending request-line and headers:
Connecting to 172.23.154.23
Sending request body:
Body block (308 bytes):
[<?xml version="1.0" encoding="utf-8"?>
<propfind xmlns="DAV:">
<prop>
<version-controlled-configuration xmlns="DAV:"/>
<resourcetype xmlns="DAV:"/>

I've spent some time (about a day) trying to get neon 0.25.2 to do SPNEGO from Windows XP (client) to apache 2.0.52 with mod_auth_kerb 5.0 on Fedora Core 3 (server), against a Win2k3 Server KDC, with the goal of doing single signon subversion. I haven't had much luck. nmake /f neon.mak OPENSSL_SRC=..\openssl-0.9.8 ZLIB_SRC=..\zlib122 EXPAT_SRC=c:\src\Expat-1.95.7-win32bin SSPI_BUILD=1 DEBUG_BUILD=1 If I use the short host name I get this error on the server, which I presume is due to not finding the right service principal: [Thu Jul 14 16:37:52 2005] [error] [client 172.23.155.51] gss_accept_sec_context() failed: Miscellaneous failure (Wrong principal in request) Probably, as described in the post above, at least gethostbyname() should be used, but even that may not be enough for multi-homed hosts, etc. If I use the FQDN of the host, this error goes away. But then, on the server, I get: [Thu Jul 14 16:37:27 2005] [error] [client 172.23.155.51] gss_accept_sec_context() failed: Miscellaneous failure (Request is a replay) I've attached an ethereal packet trace of the communication, and the debug output from neon at a mask of 15. I don't know enough about kerberos to really debug this, although I'd like to help. I've tried playing with the value of fContextReq, but to no avail. NB that I'm able to access the repository using, eg, Internet Explorer (doing SPNEGO), as you can see from later in the trace. Also, subversion can do SPNEGO/GSSAPI from linux to the same server. On a separate but related note, is there any easy to build dav client for windows that uses neon? It would be nice to be able to test without all the, er, baggage of svn. <baseline-relative-path xmlns="http://subversion.tigris.org/xmlns/dav/"/>

<repository-uuid xmlns="http://subversion.tigris.org/xmlns/dav/"/>
</prop></propfind>
]
Request sent; retry is 0.
[status-line] < HTTP/1.1 401 Authorization Required
[hdr] Date: Fri, 15 Jul 2005 00:19:35 GMT
Header Name: [date], Value: [Fri, 15 Jul 2005 00:19:35 GMT]
[hdr] Server: Apache/2.0.52 (Fedora)
Header Name: [server], Value: [Apache/2.0.52 (Fedora)]
[hdr] WWW-Authenticate: Negotiate
Header Name: [www-authenticate], Value: [Negotiate]
[hdr] WWW-Authenticate: Basic realm="Authorization Realm"

[hdr] Content-Length: 486
Header Name: [content-length], Value: [486]
[hdr] Connection: close
Header Name: [connection], Value: [close]
[hdr] Content-Type: text/html; charset=iso-8859-1
Header Name: [content-type], Value: [text/html; charset=iso-8859-1]
[hdr]
End of headers.
Reading 486 bytes of response body.
Got 486 bytes.
Read block (486 bytes):
[<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>401 Authorization Required</title>
</head><body>
<h1>Authorization Required</h1>
<p>This server could not verify that you
are authorized to access the document
requested.  Either you supplied the wrong
credentials (e.g., bad password), or your
browser doesn't understand how to supply
the credentials required.</p>
<hr>

</body></html>
]
Running post_send hooks

realm="Authorization Realm"
Got challenge (code 401).
Got new auth challenge: Negotiate, Basic realm="Authorization Realm"
New 'Negotiate' challenge.
New 'Basic' challenge.
Got pair: [realm] = [Authorization Realm]
Finished parsing parameters.
Looking for SSPI/Negotiate.
auth: SSPI challenge.
in ne_sspi_authenticate.

ECAgYKKwYBBAGCNwICCqKCBqsEgganYIIGowYJKoZIhvcSAQICAQBuggaSMIIGjqADAgEFoQMCAQ6iBw
MFACAAAACjggW3YYIFszCCBa+gAwIBBaERGw9NRkFELk1GUk9PVC5PUkeiJjAkoAMCAQKhHTAbGwRIVF
RQGxNwcm90ZW9taWNzLm1heW8uZWR1o4IFazCCBWegAwIBF6EDAgEDooIFWQSCBVXSqK8Apk286iad1r
SaNUkhcYzNh3uslkgcVg3hgKHzzzBND3E9Ay+axjS/2yXgTxF26n3gk2IwpMuyapHjGHCtyFbOgWHKX6
HBuhpQsAvufGYFlDlVbIF8BW2rOfq79XRhvydhPtRSb2+VMlHj6e/XKNYZuBVnyM35VE84B94cjtfe+q
v1zATY6iC5VgZ5Ci9k0puzOe8DX/uc1scE2+Pd1SQmEkC79R/qnb1cMVLH6D9ebE9shMVluPl2mzD6Hf
EFJif4fEloL1a6YeiM/3FPZ6/iCpC+af0pkcX1cEKvj/41Q4bz+uC+tDo8RDauvdfDObu/y4vL8qyRAo
G067mT9mN+T58sdC5Dz49URlynRglMrWL5JFoBNf3gNLnVLWOCorhSLneEC5mC06dN5a+rcUajRtdV1f
F+2CLbSpu3s5xnDpRXm4r03IKxZ0RN07REdloOehnQxKZkN6/o1JtYOCupzmUIxeNtr/0qrLg1VxUGfe
2L1QhkLWwrkA+3PJhTD3KNKaSibisGfks07echnP6Z8i7xJU/PXkNGBPFNG+5X8083FUzd2YjLs2FKXx
R8U/IzbMIkJoLgJW9LpE/4rynKBXwIXft4BEjLYd62VGpPxBuO/LZ5jOUEwkDor26msQy2dd1bwKmN7N
44aKMD30xpPqOytuK8ndxEd9einMs834O+Gge0vx8XemyAPsAyX4RfJZ320NDBGJguVK+gcfeQs045Mw
1W4HEii2XCl7AXZORH8e9YXqOnUWbCXpw0DJ7Iiimai12D6agY35wif6NHHbPQwOKLBYXgGyDWwjjI8r
5WFiyF3ArXvVzFYQcDKdz6ByhW/7kb9QRr7/evO/lWV0JZ8aX4Z3Y4VQXLHSdRFw/iMIFS2jqh9so4IW
5NqLPKwdwWWpiZA16E0D4KzFbEvO5yW4W5A58ahUxYBSIxYyTr6Tnsa7B8HAf3fZYql2lkqR/q32KZLN
PpeeeXnlpxCJCoDgCfrFAKNbWYU0mQAOqvR3BdJ9dUueQlKdfdjGSrrEtdopX38RZ7ibAK1mpsbGbD1N
I3TzN6bWSwvaiOSpaHk3++kCeUngqstbwjzava71h/eFtJeyS/eT0i/EicKsEUuigiIdAs+hap0IRE0O
arrjmBYd13YR+9AbeUGKV/FBnkOQ9oNMw2+P8rQzY5hwCcdSNpc7zQ4BmWTVccrUPslL5Rzq3QMDtbC6
QF7KieBekIpGtIQwPIdOOr4lZLqFlmB4EnrI2mhrVmZ2TQ7Imi/K9wt6n2fPwAhaMqSphr+7LZBQni3o
+G37uWdaRTf89txXZyRsPu0txA8ivCnz95hGdKuqDfO60mnTV/umVv+La5RavkXOzebzzcxtk0Z+X2pl
wA87ZSjk7BT/oc3WmKKiySk7Zr6uWeIaUv4ycaDUiGflev+riAMqERD9eI8DcorIFtwv1gmwcND5Q99L
R9pCNRhR/kS0l5mC8YXV9VE7nnsivZJ7Z86D2vViur87fhZmizTZ6BLLa+w3xg9AiDwNIutsiuN7CRPI
CUCBMXxa21Slcc2EALPZEw8vz/3VXtoysvgPAFn1nVIhg+x7Dm0pnlnKGTQQZnyg619b/YwTPdtrLM4P
3nnApWluo9jhIYPWgYlO5IfwUmAYOBZ8WYmuSHsrKYSmZp4ykdZRGLbtUfInqXyONyZ3eelyXW7cBFzb
6XhaHWijh920jahPQK2rMdYTv9rluNl7+5npgDWVBkCsiAYybB40xLxmcSmIP/yXRqk5+DCsdilP1L0f
o4weF1RspcrlCCovCBYlbAhYBBzKdYEq8k3ZvmyiGuIBWkgb0wgbqgAwIBF6KBsgSBr2bzBeSMY4e1gV
l44Dv1CB+R6K12Gy0KICrxnATQkusEtLFBhVcJSkCKGk75gyU+Kxab47++o2ce9PkbzLvtg5NyWtkAWI
svIKX23O4YlDq8obyLzkabZ/c3v/JBCI0/YWgnJDfEL4f3zuswmDlFPTEhSknL6UL7r843r+pneYJdF7
BdSkc9297W/YJ4m0oPrvYRBtfX9v2wzrTvypG8U8VRynhjgSE1EfzWmCi7lMA=]
Closing connection.
Connection closed.
Running pre_send hooks
Handling auth session.
compress: Initialization.
compress: Initialization.
Sending request headers:
PROPFIND /testsrc HTTP/1.1
Host: proteomics.mayo.edu
User-Agent: SVN/1.3.0 (dev build) neon/0.25.2
Keep-Alive:
Connection: TE, Keep-Alive
TE: trailers
Content-Length: 308
Content-Type: text/xml
Depth: 0
Accept-Encoding: gzip
Accept-Encoding: gzip

xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

Sending request-line and headers:
Connecting to 172.23.154.23
Sending request body:
Body block (308 bytes):
[<?xml version="1.0" encoding="utf-8"?>
<propfind xmlns="DAV:">
<prop>
<version-controlled-configuration xmlns="DAV:"/>
<resourcetype xmlns="DAV:"/>

Header Name: [www-authenticate], Value: [Basic realm="Authorization Realm"] <address>Apache/2.0.52 (Fedora) Server at proteomics.mayo.edu Port 80</address> ah_post_send (#0), code is 401 (want 401), WWW-Authenticate is Negotiate, Basic auth: SSPI challenge [YIIG5QYGKwYBBQUCoIIG2TCCBtWgJDAiBgkqhkiC9xIBAgIGCSqGSIb3Eg Authorization: xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx <baseline-relative-path xmlns="http://subversion.tigris.org/xmlns/dav/"/>

<repository-uuid xmlns="http://subversion.tigris.org/xmlns/dav/"/>
</prop></propfind>
]
Request sent; retry is 0.
[status-line] < HTTP/1.1 207 Multi-Status
[hdr] Date: Fri, 15 Jul 2005 00:19:35 GMT
Header Name: [date], Value: [Fri, 15 Jul 2005 00:19:35 GMT]
[hdr] Server: Apache/2.0.52 (Fedora)
Header Name: [server], Value: [Apache/2.0.52 (Fedora)]

kqhkiG9xIBAgICAG9zMHGgAwIBBaEDAgEPomUwY6ADAgEXolwEWl9Swsz9IA10WdBGZuy12xSjO4pjRS
23GcmnNqN/3n8VSifLh9jZAklOykGMzO2UqECba+0IWlXtA7OKEAQcj5YaXvl52yT6g3upx4u9R08Mea
PuK9BRa9HHvw==

QICooGIBIGFYIGCBgkqhkiG9xIBAgICAG9zMHGgAwIBBaEDAgEPomUwY6ADAgEXolwEWl9Swsz9IA10W
dBGZuy12xSjO4pjRS23GcmnNqN/3n8VSifLh9jZAklOykGMzO2UqECba+0IWlXtA7OKEAQcj5YaXvl52
yT6g3upx4u9R08MeaPuK9BRa9HHvw==]
[hdr] Content-Length: 645
Header Name: [content-length], Value: [645]
[hdr] Connection: close
Header Name: [connection], Value: [close]
[hdr] Content-Type: text/xml; charset="utf-8"
Header Name: [content-type], Value: [text/xml; charset="utf-8"]
[hdr]
End of headers.
Reading 512 bytes of response body.
Got 512 bytes.
Read block (512 bytes):
[<?xml version="1.0" encoding="utf-8"?>

[hdr] WWW-Authenticate: Negotiate oYGgMIGdoAMKAQChCwYJKoZIhvcSAQICooGIBIGFYIGCBg Header Name: [www-authenticate], Value: [Negotiate oYGgMIGdoAMKAQChCwYJKoZIhvcSA <D:multistatus xmlns:D="DAV:" xmlns:ns1="http://subversion.tigris.org/xmlns/dav/

" xmlns:ns0="DAV:">

<D:response xmlns:lp1="DAV:" xmlns:lp3="http://subversion.tigris.org/xmlns/dav/";

<D:href>/testsrc/</D:href>
<D:propstat>
<D:prop>
<lp1:version-controlled-configuration><D:href>/testsrc/!svn/vcc/default</D:href>
</lp1:version-controlled-configuration>
<lp1:resourcetype><D:collection/></lp1:resourcetype>
<lp3:baseline-relative-path/>
<lp3:repository-uuid>291df8c2-dcfb-0310]
XML: Parsing 512 bytes.
XML: start-element (0, {DAV:, multistatus}) => 100
XML: char-data (100) returns 0
XML: start-element (100, {DAV:, response}) => 101
XML: char-data (101) returns 0
XML: start-element (101, {DAV:, href}) => 103
XML: char-data (103) returns 0
XML: end-element (103, {DAV:, href})
XML: char-data (101) returns 0
XML: start-element (101, {DAV:, propstat}) => 104
XML: char-data (104) returns 0
XML: start-element (104, {DAV:, prop}) => 105
XML: char-data (105) returns 0

XML: start-element (217, {DAV:, href}) => 103
XML: char-data (103) returns 0
XML: end-element (103, {DAV:, href})
XML: end-element (217, {DAV:, version-controlled-configuration})
XML: char-data (105) returns 0
XML: start-element (105, {DAV:, resourcetype}) => 214
XML: start-element (214, {DAV:, collection}) => 204
XML: end-element (204, {DAV:, collection})
XML: end-element (214, {DAV:, resourcetype})
XML: char-data (105) returns 0

XML: start-element (105, {DAV:, version-controlled-configuration}) => 217 XML: start-element (105, {http://subversion.tigris.org/xmlns/dav/, baseline-rela

tive-path}) => 224

XML: end-element (224, {http://subversion.tigris.org/xmlns/dav/, baseline-relati

ve-path})
XML: char-data (105) returns 0

XML: start-element (105, {http://subversion.tigris.org/xmlns/dav/, repository-uu

id}) => 250
XML: char-data (250) returns 0
XML: XML_Parse returned 1
Reading 133 bytes of response body.
Got 133 bytes.
Read block (133 bytes):
[-8789-d5c60641211d</lp3:repository-uuid>
</D:prop>
<D:status>HTTP/1.1 200 OK</D:status>
</D:propstat>
</D:response>
</D:multistatus>
]
XML: Parsing 133 bytes.
XML: char-data (250) returns 0

XML: end-element (250, {http://subversion.tigris.org/xmlns/dav/, repository-uuid

})
XML: char-data (105) returns 0
XML: end-element (105, {DAV:, prop})
XML: char-data (104) returns 0
XML: start-element (104, {DAV:, status}) => 106
XML: char-data (106) returns 0
XML: end-element (106, {DAV:, status})
XML: char-data (104) returns 0
XML: end-element (104, {DAV:, propstat})
XML: char-data (101) returns 0
XML: end-element (101, {DAV:, response})
XML: char-data (100) returns 0
XML: end-element (100, {DAV:, multistatus})
XML: XML_Parse returned 1
XML: End of document.
XML: XML_Parse returned 1
Running post_send hooks

doAMKAQChCwYJKoZIhvcSAQICooGIBIGFYIGCBgkqhkiG9xIBAgICAG9zMHGgAwIBBaEDAgEPomUwY6A
DAgEXolwEWl9Swsz9IA10WdBGZuy12xSjO4pjRS23GcmnNqN/3n8VSifLh9jZAklOykGMzO2UqECba+0
IWlXtA7OKEAQcj5YaXvl52yT6g3upx4u9R08MeaPuK9BRa9HHvw==
Closing connection.
Connection closed.
Request ends, status 207 class 2xx, error line:
207 Multi-Status
Running destroy hooks.
Request ends.
ah_create, for WWW-Authenticate
Running pre_send hooks
Handling auth session.
compress: Initialization.
compress: Initialization.
Sending request headers:
PROPFIND /testsrc/!svn/vcc/default HTTP/1.1
Host: proteomics.mayo.edu
User-Agent: SVN/1.3.0 (dev build) neon/0.25.2
Connection: TE
TE: trailers
Content-Length: 116
Content-Type: text/xml
Depth: 0
Accept-Encoding: gzip
Accept-Encoding: gzip

xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

Sending request-line and headers:
Connecting to 172.23.154.23
Sending request body:
Body block (116 bytes):
[<?xml version="1.0" encoding="utf-8"?>
<propfind xmlns="DAV:">
<prop>
<checked-in xmlns="DAV:"/>
</prop></propfind>
]
Request sent; retry is 0.
[status-line] < HTTP/1.1 401 Authorization Required
[hdr] Date: Fri, 15 Jul 2005 00:19:35 GMT
Header Name: [date], Value: [Fri, 15 Jul 2005 00:19:35 GMT]
[hdr] Server: Apache/2.0.52 (Fedora)
Header Name: [server], Value: [Apache/2.0.52 (Fedora)]
[hdr] WWW-Authenticate: Basic realm="Authorization Realm"

[hdr] Content-Length: 486
Header Name: [content-length], Value: [486]
[hdr] Connection: close
Header Name: [connection], Value: [close]
[hdr] Content-Type: text/html; charset=iso-8859-1
Header Name: [content-type], Value: [text/html; charset=iso-8859-1]
[hdr]
End of headers.
Reading 486 bytes of response body.
Got 486 bytes.
Read block (486 bytes):
[<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>401 Authorization Required</title>
</head><body>
<h1>Authorization Required</h1>
<p>This server could not verify that you
are authorized to access the document
requested.  Either you supplied the wrong
credentials (e.g., bad password), or your
browser doesn't understand how to supply
the credentials required.</p>
<hr>

</body></html>
]
Running post_send hooks

orization Realm"
Got challenge (code 401).
Got new auth challenge: Basic realm="Authorization Realm"
New 'Basic' challenge.
Got pair: [realm] = [Authorization Realm]
Finished parsing parameters.
Looking for SSPI/Negotiate.
Looking for SSPI/NTLM.
Looking for Digest challenges.
No good Digest challenges, looking for Basic.
Got Basic challenge with realm [Authorization Realm]

ah_post_send (#0), code is 207 (want 401), WWW-Authenticate is Negotiate oYGgMIG Authorization: xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx Header Name: [www-authenticate], Value: [Basic realm="Authorization Realm"] <address>Apache/2.0.52 (Fedora) Server at proteomics.mayo.edu Port 80</address> ah_post_send (#0), code is 401 (want 401), WWW-Authenticate is Basic realm="Auth Authentication realm: <http://proteomics.mayo.edu:80> Authorization Realm

Password for 'cjm37':

neon_mod_auth_kerb.pcap
Description: Binary data

_______________________________________________
neon mailing list
neon@webdav.org
http://mailman.webdav.org/mailman/listinfo/neon