SYSTEM WARNING: 'date_default_timezone_get(): It is not safe to rely on the system's timezone settings. You are *required* to use the date.timezone setting or the date_default_timezone_set() function. In case you used any of those methods and you are still getting this warning, you most likely misspelled the timezone identifier. We selected the timezone 'UTC' for now, but please set date.timezone to select your timezone.' in '/usr/share/mantis/www/core.php' line 264

0002348: Endian 2.3 proxy authentication not working properly - MantisBT Endian Bugtracker
Endian Issue Tracker





Please see now our new Bugtracker system: JIRA








View Issue Details Jump to Notes ] Issue History ] Print ]
IDProjectCategoryView StatusDate SubmittedLast Update
0002348Endian FirewallProxy HTTPpublic2009-10-31 14:122009-11-25 11:03
Reporterwiseguytech 
Assigned Tosimon-endian 
PrioritynormalSeverityminorReproducibilityalways
StatusclosedResolutionnot fixable 
PlatformOSOS Version
Product Version2.3 
Target VersionFixed in Version 
Summary0002348: Endian 2.3 proxy authentication not working properly
DescriptionI KNOW this is a bug because this used to work perfectly in 2.3 RC1. When you create an access policy rule and select "user based authentication" or "group based authentication" and you select the proper user/groups, the policy wont have any effect UNLESS you configure the client with the non-transparent proxy settings. Basically the "authentication" portion of Endian is broken, as it should ask the client for credentials even if the client is not configured to use a proxy, I have verified that I have Endian set in transparent mode.
TagsNo tags attached.
Attached Files

- Relationships

-  Notes
(0003214)
simon-endian (developer)
2009-11-02 15:19

if the proxy is running in transparent mode authentication does not work. this i because transparent mode means that all http traffic is forwarded to the http proxy with iptables, which makes user authentication imposible.

Please test again with non-transparent mode. if proxy is enabled for a zone and the clients of the zone are not allowed to access port 80 & 443, with an outgoing firewall rule, the browser will search for an http proxy (if configured in the browser settings) and should use the http proxy of your firewall and asks for authentication if the access policies are correctly configured.
(0003359)
christian-endian (administrator)
2009-11-25 10:56

User based authentication will never work in transparent mode.

- Issue History
Date Modified Username Field Change
2009-10-31 14:12 wiseguytech New Issue
2009-11-02 15:19 simon-endian Note Added: 0003214
2009-11-25 08:53 christian-endian Assigned To => simon-endian
2009-11-25 08:53 christian-endian Relationship added parent of 0002435
2009-11-25 08:53 christian-endian Relationship deleted parent of 0002435
2009-11-25 08:53 christian-endian Relationship added child of 0002435
2009-11-25 10:06 christian-endian Status new => acknowledged
2009-11-25 10:56 christian-endian Note Added: 0003359
2009-11-25 10:56 christian-endian Status acknowledged => closed
2009-11-25 10:56 christian-endian Resolution open => not fixable
2009-11-25 11:03 christian-endian Relationship deleted child of 0002435

Copyright © 2005-2008 Endian, SRL. All rights reserved.


Copyright © 2000 - 2012 MantisBT Group
Powered by Mantis Bugtracker