|
/
Zope
/
Apsis
/
Pound Mailing List
/
Archive
/
2005
/
2005-06
/
Pound, OWA 2003, SSL and forms-based authentication?
[
basic problem with request redirector / Susan ... ]
[
X-Forwarded-For header / "Dean" ... ]
Pound, OWA 2003, SSL and forms-based authentication?
"Nicholas, Marc" <MNicholas(at)firstassociates.com> |
2005-06-27 18:46:50 |
[ FULL ]
|
Hi all,
I've been trying to get OWA 2003 working with Pound and have had no problem
when the OWA server is configured to do plain old HTTP.
The problem arises when I want to try and use forms-based authentication,
which requires the use of SSL on the backend. I get the following error:
Jun 27 05:31:21 linux pound: response error read from 192.168.231.90:443:
Connection reset by peer
Is what I'm trying to do even possible? i.e. have pound talk to OWA using
SSL.
-marc
This email may contain privileged information, and is intended only for the
named
recipient and may be privileged. Distribution, disclosure or copying of this
email
by anyone other than the named recipient is prohibited. If you are not the
named
recipient, please notify us immediately, by return email, and permanently
destroy
this email and all copies of it. Internet email is not private, secure, or
reliable.
Neither Rockwater Capital Corporation, its affiliates nor employees or
contractors
are liable for any errors or omissions in the content or transmission of this
email.
Any opinions contained in this email are solely those of the author and, unless
clearly indicated otherwise in writing are not endorsed by Rockwater Capital
Corporation or its affiliates.
|
|
|
|
|
Re: [Pound Mailing List] Pound, OWA 2003, SSL and forms-based authentication?
Paul Chvostek <paul+pound(at)it.ca> |
2005-06-27 22:33:10 |
[ FULL ]
|
Hi Marc! :) Long time no chat.
On Mon, Jun 27, 2005 at 12:46:50PM -0400, Nicholas, Marc wrote:[...]
I don't know what "OWA 2003" is, but ...
[...]
...[...]
Nope. There are multiple list archive entries on this:
http://www.apsis.ch/pound/pound_list/archive/2004/2004-02/1076572597000
http://www.apsis.ch/pound/pound_list/archive/2004/2004-05/1085688965000
to name a few.
As far as I can tell, the primary reason you'd need SSL on a back-end
server would be that you didn't trust your back-end network. I've never
had to do anything with SSL that couldn't be achieved with Pound, though
there's no doubt some stuff that's easier to achieve when *everything*
runs inside the web server. Pound can even make certificate contents
available to back-end servers.
This sounds like a similar application issue to what was mentioned here:
http://www.apsis.ch/pound/pound_list/archive/2004/2004-12/1103019225000/
If this "OWA 2003" thing can't be configured to do Basic Authentication
over HTTP, you should talk to the vendor about getting that fixed.
[...]
I'm not sure this disclaimer is valid when posting to a publically
archived list.
[...]
|
|
|
|
