Re: Small question about the caching of password protected pages

From: Robert Olsson <[email protected]>
Date: Wed, 10 Feb 1999 23:46:02 +0100

At 16:38 1999-02-10 -0500, Simon Austin wrote:
>I works for a small IT news service. A large portion of our articles are in
>directories protected using basic authentication. Recently, one of our
>sales people was demoing our service and found that the person to whom they
>were demoing could read the articles within the protected directories -
>without having to enter a password.
>
>After I checked and could find no accesses from the company (and indeed the
>continent in question) during the time when the demo was taking place, I
>asked if there was a cache in use. They told me that SQUID was being used.
>
>Am I correct in thinking that SQUID has cached the page from an earlier
>access by someone who does have a password, or am I barking up the wrong
>tree here?
>
>- Si
>

Just wanted to say you are probably barking up the right tree.
I've experienced similar results with Squid/2.1.PATCH2

Regards,

Robban

RobTex http://www.robtex.com/
home of JavaMachine, SuperSearch,
VikingServer and Robban's Homepage.
Apologies for delayed answers
Received on Wed Feb 10 1999 - 15:31:36 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:44:30 MST