Hi,

Dimi Paun wrote:

On Thu, 2006-08-10 at 13:33 +0200, Francois Gouget wrote:

...

There may also be a way to specify a password ('user%password@...'?).

Format is: [user[:password]@]hostname[:port]

If I google for http_proxy, I always find this additionally prefixed by "http://". Some have even an additional slash at the end. (This is also the format which works here with Lynx and wget.)

Note that one should also support no_proxy (comma separated list of hostnames, e.g. "il" (matching e.g. ".mil" and ".il"), ".winehq.org" etc.)

Maybe ftp_proxy should be supported as well?

Tobias

Hi,

Augusto Arcoverde da Rocha wrote:

Hummmm...

Then a better approach would be avoid environment variables, as this seems to be a Wine development directive, and use the right format for the proxy configuration string.

I disagree. I think it makes sense to support general environment variables (such as http_proxy, no_proxy, EDITOR, DISPLAY, USER, HOME, BROWSER, etc.). I do agree that it make sense to keep the number of Wine specific environment variable low, though.

Currently, my http_proxy is used by wget, lynx, w3m, Firefox (SUSE build, probably not in mozilla.org's build) and some more. I thus think it should be also used by Wine. (I don't know, whether one should also support a registry string to overwrite $http_proxy.)

Tobias

Hi,

Augusto Arcoverde da Rocha schrieb:

IMHO, the current password exposition is a ugly thing: $ export http_proxy=http://user:__%3E%3E**password**<<__@host.dom:8080

I wouldn't worry to much about a PROXY password. I mean who can access files and environment variables? Basically only you and the administrator of your system.

I think the bigger problem is that guessed 99% of all proxies, which ask for passwords, transmit them in clear. (I think there is no SSL protocol or digest protocol which is widely supported.)

(Our university's computation centre offers a password-proxy access using the username/password. I'm slightly reluctant to save that password on my laptop and I'm fully against transmitting it with every HTTP request. Thus I'm using a ssh tunnel with localhost:8080 as proxy.)

I think would be preferable hide the password typing and don't storing it in a file like system register, maintaining it in the memory only. Perhaps getting the password altrougt some interactive process which hide the password.

Well, exactly that you get if you add the following into your .bashrc:

printf 'Enter Password for the HTTP PROXY: ' stty -echo read pass stty echo echo "" http_proxy="http://$USER:$pass@hostname:port/" export http_proxy

Otherwise: Many programs automatically ask for a password if protcol://user@hostname:port/ didn't succeed. (At least Mozilla does so for the proxy.) I wouldn't be surprised if the Internet Explorer did the same. (It does for ftp://foo@bar.com/).

Tobias

On 8/11/06, Francois Gouget fgouget@free.fr wrote:

On Thu, 10 Aug 2006, Augusto Arcoverde da Rocha wrote: [...]

...

Yes, it's supported but isn't a standart and has no guaranties to exists on all architectures as Alexander said in a reply in this list

$http_proxy and $ftp_proxy may not be very well documented but they are defacto standards and as such it would be good to support them in Wine.

Logicaly is almost impossible to prove the inexistence of something, however to prove the existence of something, is enough to show a single occurrence of that thing.

Then I need to ask you where is the documentation for proxy variables standards to send it to the Subversion community: http://svn.haxx.se/dev/archive-2003-07/1672.shtml

Just kidding ;P

Now, thinking better, I need to agree with those who defend the proxy environment variables on Wine, is almost a standard and is widely used. I don't see any good reasons to not support them on Wine.

But, I have read in somewhere a reply from Alexander about avoiding environment variables. However, I can't find this message again.

Regards, Augusto Arcoverde da Rocha