[ previous ] [ next ] [ threads ]
 From:  =?iso-8859-2?Q?Peter_Parni=E8an?= <peter at procad dot sk>
 To:  "Matchstick" <matchstick at oofg dot com>
 Cc:  <m0n0wall at lists dot m0n0 dot ch>
 Subject:  Re: [m0n0wall] https question
 Date:  Sun, 3 Jul 2005 23:01:58 +0200
Thx. for reply but still have same problem. You looks like good oriented in 
this area so maybe if you have some time to think about this problem you 
could help. Im writing php srcipt to do traffic accounting.

It is working this way:  in my webhosting server (out of my LAN) i set to 
cron an address of that php script which runs every hour and will open 
dump.php page and download content... ...but how to open that page 
(dump.php) if im using "common" webhostig server, its mean i can't 
manipulate with kernel and etc. ...its because i want to give possibility to 
use this accountig script  as much users as possible. Even for user with 
free web hosting without MySQL (all traffic is saved to txt files like 
hourly.txt, dayly.txt....)

For testing I used  $theFile = 
file_get_contents('https://X.X.114.87/cgi/dump.php'); but dump.php was 
placed on same place as mz web page. (i just did copy of dump.php from mono 
and therefore i havent problem with https or even asking name and password)

Thx. in advance for any help.. ...i alredy spent lots of hours with this 
"silly" problem and can't continue to develop php accountig script without 
"real" dump.php.


----- Original Message ----- 
From: "Matchstick" <matchstick at oofg dot com>
To: "Peter Parnièan" <peter at procad dot sk>; <m0n0wall at lists dot m0n0 dot ch>
Sent: Sunday, July 03, 2005 10:13 PM
Subject: Re: [m0n0wall] https question

On Sunday, July 3, 2005, 8:49:50 PM, Peter Parnièan <peter at procad dot sk> wrote:

PP> Hi guys, pls. help me :) ...im trying to open
PP> https://x.x.x.x/cgi/dump.php from my php script but its drive me
PP> crazy... ...when i directly open that page mono ask me if i accept
PP> https and that ask me for a username and password... And this is
PP> what i dont know how to avoid... ...i can read content of any page
PP> if no https used.... i can switch mono to http but its not good
PP> idea for "firewall".

PP> Please help!

PP> peter

PP> PS: this is almost last step to per IP traffic acountig php script...

I just tried with my m0n0 box and using a URL with the syntax:
http(s)://<username>:<password>@x.x.x.x/cgi/dump.php seems to work fine
with both HTTP and HTTPS in Firefox.

However (I assume for anti-phishing reasons) this technique doesn't
work in IE and both Opera and Firefox pops up a dialog box starting
that You are about to login into web site "x.x.x.x" with username
"<username>" rather than taking you directly to the page which might
cause problems if you're looking to automate the process using one of
those browsers.
(Win32 v1.8.2 WGET seems to work perfectly though)

 Paul Browning
 matchstick at oofg dot com

To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch