Re: TCP_DENIED logging as part of HTTP authentication

2006-12-13 Thread Henrik Nordstrom 
ons 2006-12-13 klockan 12:22 +0800 skrev Adrian Chadd:

> What would be nice is if we could log a bunch of different TCP_DENIEDs, 
> covering
> for example:

Yes, the status should be expanded in very many situations. Today very
many conditions is lumped together in very few log codes..
authentication is the most obvious, but there is significant collisions
in other aspects as well.

We have held back on the log codes in fear of breaking log parsers, but
now with the custom log formats we are free to invent again without the
same level of fear.

To solve this I suggest introducing a version option to the Squid status
code format specifier.

%{version}Ss

with the default being the latest format. Except for the builtin "squid"
format which should stay as it is (it's implemented using a different
formatting function even..).

Regards
Henrik


signature.asc
Description: Detta är en digitalt signerad	meddelandedel

Re: TCP_DENIED logging as part of HTTP authentication

2006-12-13 Thread Jeremy Hall 
oh I WHOLE_HEARTEDLY agree! the logs are filled with duplicate requests
because of this

_J

>>> Adrian Chadd <[EMAIL PROTECTED]> 12/12/06 11:22 PM >>>
Hiya,

I've had a few customers ask me why there's "TCP_DENIED"s in the
logfiles and I've
tried to explain that its part of the NT authentication process.

What would be nice is if we could log a bunch of different TCP_DENIEDs,
covering
for example:

* "no supplied credentials"
* "in the middle of the Digest negotiation"
* "supplied credentials were actually bad"
* "denied with no chance of authenticating"

Thoughts?




Adrian

TCP_DENIED logging as part of HTTP authentication

2006-12-12 Thread Adrian Chadd 
Hiya,

I've had a few customers ask me why there's "TCP_DENIED"s in the logfiles and 
I've
tried to explain that its part of the NT authentication process.

What would be nice is if we could log a bunch of different TCP_DENIEDs, covering
for example:

* "no supplied credentials"
* "in the middle of the Digest negotiation"
* "supplied credentials were actually bad"
* "denied with no chance of authenticating"

Thoughts?




Adrian