1995-10-04 - Re: New version of my privacy enhanced www proxy is out
Header Data
From: Laurent Demailly <dl@hplyot.obspm.fr>
To: Alan Barrett <barrett@iafrica.com>
Message Hash: 77811850f5e102448fed2639c74f163b2a46210f3e25398c0c05e983c48412c6
Message ID: <9510042239.AA17348@hplyot.obspm.fr>
Reply To: <9510042024.AA16962@hplyot.obspm.fr>
UTC Datetime: 1995-10-04 22:39:36 UTC
Raw Date: Wed, 4 Oct 95 15:39:36 PDT
Raw message
From: Laurent Demailly <dl@hplyot.obspm.fr>
Date: Wed, 4 Oct 95 15:39:36 PDT
To: Alan Barrett <barrett@iafrica.com>
Subject: Re: New version of my privacy enhanced www proxy is out
In-Reply-To: <9510042024.AA16962@hplyot.obspm.fr>
Message-ID: <9510042239.AA17348@hplyot.obspm.fr>
MIME-Version: 1.0
Content-Type: text/plain
(BCCed to aproxy list, to avoid followup troubles)
Alan Barrett writes:
> > The proxy now issue "Content-Checksums: md5=xxxxxx"
Btw i typoed, I use "Content-Checksum: md5=<hexa/ascii-output>"
like in "Content-Checksum: md5=0246be185424cc79b61f4a55b73362c1"
like does the "md5" and md5sum (pgp's contrib dir) programs
> > headers for its stuff, I 'invented' that syntax, any www guru to tell
> > me if it already exists under another form ? (i checked the
> > http docs at w3.org, found nothing)
>
> RFC 1544 specifies the Content-MD5 header field for use with
> MIME-conformant messages. It looks like this:
>
> Content-MD5: Q2hlY2sgSW50ZWdyaXR5IQ==
Thanks very much for pointing out,
I don't like the fact they somehow hard wired the checksum/digest
algorithm in the keyword name, it is imo a bad idea, when you will want to
use another algorithm, also the rfc state that the checksum applies to
"canonical" form, the one I want applies to the "Content-Length" bytes
you read, whatever they are (no interpretation), and I don't like the
use of base64 which is not nice if you want to check with existing
md5,md5sum programs what you get.
I stepped meanwhile on a draft on authorization scheme using digest,
which might be interesting... when implemented client side... more on
this later (ref:
http://www.ics.uci.edu/pub/ietf/http/draft-ietf-http-digest-aa-01.txt
see also
http://www.ics.uci.edu/pub/ietf/http/draft-ietf-http-mda-00.txt
for a "mediated digest" authentification/security scheme)
dl
--
Laurent Demailly * http://hplyot.obspm.fr/~dl/ * Linux|PGP|Gnu|Tcl|... Freedom
Prime#1: cent cinq mille cent cinq milliards cent cinq mille cent soixante sept
genetic security Legion of Doom spy CIA munitions Serbian
Thread
Return to October 1995
- Return to “Alan Barrett <barrett@iafrica.com>”
Return to “Laurent Demailly <dl@hplyot.obspm.fr>”
- 1995-10-04 (Wed, 4 Oct 95 13:24:31 PDT) - New version of my privacy enhanced www proxy is out - Laurent Demailly <dl@hplyot.obspm.fr>
- 1995-10-04 (Wed, 4 Oct 95 14:00:39 PDT) - Re: New version of my privacy enhanced www proxy is out - Alan Barrett <barrett@iafrica.com>
- 1995-10-04 (Wed, 4 Oct 95 15:39:36 PDT) - Re: New version of my privacy enhanced www proxy is out - Laurent Demailly <dl@hplyot.obspm.fr>