SYSTEM WARNING: 'date_default_timezone_get(): It is not safe to rely on the system's timezone settings. You are *required* to use the date.timezone setting or the date_default_timezone_set() function. In case you used any of those methods and you are still getting this warning, you most likely misspelled the timezone identifier. We selected the timezone 'UTC' for now, but please set date.timezone to select your timezone.' in '/usr/share/mantis/www/core.php' line 264

0003955: Authentication and not authentication rules are mixed up - MantisBT Endian Bugtracker
Endian Issue Tracker





Please see now our new Bugtracker system: JIRA








View Issue Details Jump to Notes ] Issue History ] Print ]
IDProjectCategoryView StatusDate SubmittedLast Update
0003955Endian FirewallProxy - HTTPpublic2011-07-08 10:232011-08-11 08:03
Reporterluca-endian 
Assigned Topeter-endian 
PrioritynormalSeveritymajorReproducibilityhave not tried
StatusconfirmedResolutionopen 
PlatformOSOS Version
Product Version2.4.1 
Target VersionFixed in Version 
Summary0003955: Authentication and not authentication rules are mixed up
Description(see the screenshot configurtion)
Rule 0 from: any to: eicar website policy: unfiltered access, authentication: ldap group based
Rule 1 from: any to: any policy: virus scan, authentication: no

1) client: GET request to eicar web site
2) authentication prompted
3) authentication successful
4) can't download virus even the rule 0 says "unfiltered"

squid.conf:
http://pastie.org/2182178 [^]
Additional InformationJul 8 12:34:27 fw-vma squid[8198]: 1310121267.070 354 192.168.1.193 TCP_MISS/000 0 GET http://www.eicar.com/anti_virus_test_file.htm [^] - FIRST_UP_PARENT/havp -
Jul 8 12:34:27 fw-vma squid[8198]: 1310121267.149 0 192.168.1.193 TCP_DENIED/407 3337 GET http://www.rexswain.com/eicar.html [^] - NONE/- text/html
Jul 8 12:34:36 fw-vma squid[8198]: 1310121276.937 1716 192.168.1.193 TCP_MISS/200 3964 GET http://www.rexswain.com/eicar.html [^] lxsc0136 FIRST_UP_PARENT/havp text/html
Jul 8 12:34:38 fw-vma squid[8198]: 1310121278.878 1941 192.168.1.193 TCP_MISS/200 2394 GET http://www.rexswain.com/cgi-bin/countrex.cgi?eicar [^] lxsc0136 FIRST_UP_PARENT/havp image/gif
Jul 8 12:34:45 fw-vma squid[8198]: 1310121284.999 1945 192.168.1.193 TCP_MISS/403 1823 GET http://www.rexswain.com/eicar.com [^] lxsc0136 FIRST_UP_PARENT/havp text/html
Tagspurple
Attached Filespng file icon Selection_001.png [^] (15,676 bytes) 2011-07-08 10:23

- Relationships

-  Notes
There are no notes attached to this issue.

- Issue History
Date Modified Username Field Change
2011-07-08 10:23 luca-endian New Issue
2011-07-08 10:23 luca-endian File Added: Selection_001.png
2011-07-08 10:23 luca-endian Tag Attached: purple
2011-07-08 10:36 luca-endian Additional Information Updated
2011-08-11 08:03 lorenzo-endian Assigned To => peter-endian
2011-08-11 08:03 lorenzo-endian Status new => confirmed

Copyright © 2005-2008 Endian, SRL. All rights reserved.


Copyright © 2000 - 2012 MantisBT Group
Powered by Mantis Bugtracker