[ic] Netscape 4.7 and Interchange

Mike Heins interchange-users@interchange.redhat.com
Thu Aug 9 16:06:01 2001


Quoting Kyle Cook (kyle@invisio.com):
> I don't know of a way to cover this situation in IC, but maybe
> this can be handled via an outside cgi script:
> 
> basically call the cgi from within ic page(s) (before they ever get to
> go to secure server) like this:
> 
> <img src="https://www.securedomain.com/cgi-bin/cookie.pl?id=[data session id]">
> 
> and have the script simply place an "IC" cookie for this secure domain
> using the passed id value as the session id, then simply return a 1 pixel
> clear spacer.gif
> 
> I know that this method can set a cookie for the secure domain, so
> theoretically it *SHOULD* then allow the secure pages to recognize
> the user when they enter.
> 
> The trick is you MUST hit this image tag at least once in navigating
> the non-secure pages BEFORE hitting a secure page...
> 
> Hope someone can use this idea and let the list know if it works.

We can do this now, but the problem comes when there is a proxy
server for HTTP and not for HTTPS. The source IP address is different,
and therefore the IP address resolves different, and the id is rejected.

If you use "WideOpen Yes" this might work well.

-- 
Red Hat, Inc., 3005 Nichols Rd., Hamilton, OH  45013
phone +1.513.523.7621      <mheins@redhat.com>

If you think nobody cares if you're alive, try missing a couple of
car payments.  -- Earl Wilson