On Tue, 17 Feb 2004, Ivan Daniluk wrote:

Hi, all!

Hi Ivan. Please excuse me for taking so long to answer; after a large list of pending duties, finally I've reached your letter.

I use proxy server, that requires basic authorization. So, I wrote patch for dillo 0.8.0 that enables this feature. It's available on:

http://dem2mpg.by.ru/dillo-0.8.0-proxy-auth.patch.gz

This proxy password authorization is a part of HTTP/1.1. As Dillo supports HTTP/1.0, it was left out. Now, we know of the problem from a long time ago. BTW Henrik worked on a way to be able to do proxy auth. Note that the patch "as is" is a hack. Dillo would tell the server it speaks HTTP/1.0 while sending "extended" headers. But, as very seldom things are black or white in this world, it also provides for a simple way to add the feature without having to bloat dillo with a full HTTP/1.1 switch.

Main question I would ask is about password storing. This patch just implements new dillorc option - "http_proxyauth", which is the string like "user:password". But, I guess, it's not correspond to dillo security policy, is it?

Yes, we're very concerned about privacy.

Maybe, we should open popup dialogue and ask user for login/password?

The login may be specified in dillorc, and the password asked in a popup dialog (whenever there's a login in dillorc :). This adds the burden of entering the password, but keeps things a bit more private. If you make it this way, it'd be a fast commit! (unless you find a better way to do it, of course) Thanks a lot Jorge.-