Comments (11)
genotrance
commented on August 16, 2024
Can you please share the logs by enabling with --debug or log = 1 in px.ini?
from px.
genotrance
commented on August 16, 2024
By the way, I don't see your comment on the noproxy comment so can you please open an issue and provide logs and you configuration?
from px.
jkordani
commented on August 16, 2024
I realized my comment was about another piece of software, cntlm, which was misbahaving for me in other ways. Console paste from --debug follows.
tested with
http_proxy=http://127.0.0.1:3129 wget http://intranet-noproxy-ip/path/to/thing
also with
wget -e use_proxy=yes -e http_proxy=http://127.0.0.1:3129
while watching wireshark. There is no ntlm header in the request.
MainProcess: MainThread: 1528724410: parse_proxy: [('internet-proxy-ip', 80)]
Serving at 127.0.0.1:3129 proc MainProcess
MainProcess: MainThread: 1528724410: parse_config: proxy:server = internet-proxy-ip:80
MainProcess: MainThread: 1528724410: parse_config: proxy:port = 3129
MainProcess: MainThread: 1528724410: parse_config: proxy:listen = 127.0.0.1
MainProcess: MainThread: 1528724410: parse_config: proxy:allow = *.*.*.*
MainProcess: MainThread: 1528724410: parse_config: proxy:gateway = 0
MainProcess: MainThread: 1528724410: parse_config: proxy:hostonly = 0
MainProcess: MainThread: 1528724410: parse_config: proxy:noproxy = intranet-noproxy-ip
MainProcess: MainThread: 1528724410: parse_config: proxy:useragent =
MainProcess: MainThread: 1528724410: parse_config: settings:workers = 2
MainProcess: MainThread: 1528724411: parse_config: settings:threads = 5
MainProcess: MainThread: 1528724411: parse_config: settings:idle = 30
MainProcess: MainThread: 1528724411: parse_config: settings:socktimeout = 5.0
MainProcess: MainThread: 1528724411: parse_config: settings:proxyreload = 60
MainProcess: MainThread: 1528724411: parse_config: settings:foreground = 0
MainProcess: MainThread: 1528724411: parse_config: settings:log = 0
Process-1: MainThread: 1528724412: parse_proxy: [('internet-proxy-ip', 80)]
Serving at 127.0.0.1:3129 proc Process-1
Process-1: MainThread: 1528724412: parse_config: proxy:server = internet-proxy-ip:80
Process-1: MainThread: 1528724412: parse_config: proxy:port = 3129
Process-1: MainThread: 1528724412: parse_config: proxy:listen = 127.0.0.1
Process-1: MainThread: 1528724412: parse_config: proxy:allow = *.*.*.*
Process-1: MainThread: 1528724412: parse_config: proxy:gateway = 0
Process-1: MainThread: 1528724412: parse_config: proxy:hostonly = 0
Process-1: MainThread: 1528724412: parse_config: proxy:noproxy = intranet-noproxy-ip
Process-1: MainThread: 1528724412: parse_config: proxy:useragent =
Process-1: MainThread: 1528724412: parse_config: settings:workers = 2
Process-1: MainThread: 1528724412: parse_config: settings:threads = 5
Process-1: MainThread: 1528724412: parse_config: settings:idle = 30
Process-1: MainThread: 1528724412: parse_config: settings:socktimeout = 5.0
Process-1: MainThread: 1528724412: parse_config: settings:proxyreload = 60
Process-1: MainThread: 1528724412: parse_config: settings:foreground = 0
Process-1: MainThread: 1528724412: parse_config: settings:log = 0
from px.
genotrance
commented on August 16, 2024
This isn't the full logs, just startup output. Can you post the full logs from the generated log files in the px directory?
from px.
jkordani
commented on August 16, 2024
my mistake.
debug-MainProcess.log
debug-Process-1.log
from px.
genotrance
commented on August 16, 2024
Px only supports NTLM auth for the upstream proxy, not NTLM auth for websites. I could add support if there is interest.
from px.
jkordani
commented on August 16, 2024
If it's not too much trouble. I'd offer to try to add it myself but I can't be sure how much time I could devote right now. Thank you for your feedback, I'd been trying to figure out how to make this work between px and cnltm with no luck.
from px.
genotrance
commented on August 16, 2024
I couldn't find a way to do this with cntlm either, thought it supported this already. Perhaps this should be prioritized higher.
from px.
gophynna
commented on August 16, 2024
I would be very much interested in this becoming a feature.
from px.
genotrance
commented on August 16, 2024
I just spent a little time looking into this and have run into a major roadblock. If you connect to a website that requires NTLM auth and it is HTTP, Px can do the auth for you.
However, every half decent website these days will use HTTPS, especially if it wants you to authenticate. This means once Px creates a tunnel, everything is now encrypted - including the HTTP headers going between the end client and the web server. Px simply passes data back and forth and has no clue when the web server sends a WWW-Authenticate header.
Effectively, this feature can be added only for HTTP web sites that require NTLM auth but given that's a super small subset of the intranet these days, I don't see the point in implementing this. If this feature was to work on HTTPS as well, Px would have to be an SSL man in the middle, like Bluecoat's proxy, and that's not worth the effort for this use case.
Feedback appreciated but seems like this is a dead end.
from px.
genotrance
commented on August 16, 2024
Closing this out unless someone has any suggestions.
from px.
Related Issues (20)
- 0.7.0: [Errno 10054] An existing connection was forcibly closed by the remote host. HOT 3
- WSL v2 compatibility? HOT 3
- Successfully created EXE file is not executable. HOT 2
- [WinError10053] An established connection was aborted by the software in your host machine HOT 20
- After a few requests the proxy seems to go in a loop without serving more data HOT 2
- Debug output showsstrange characters and some requests don't seem to return. HOT 3
- import problem on macos pip install HOT 1
- Px Proxy Issue on Windows HOT 3
- "PROXY" prefix in web.pac HOT 2
- get_destination for local server not using direct connection since 0.8.0 HOT 8
- `_quickjs.JSException: InternalError: Python call failed.` with PAC file HOT 1
- Exit automatically if log = 0 HOT 4
- PAC file encoding HOT 11
- IPv6 connect support HOT 2
- have an option to launch in the background HOT 1
- px status command HOT 3
- Px related issues when other applocations make localhost request HOT 2
- hostonly and WSL2 HOT 7
- `curl: (56) Proxy CONNECT aborted` error with px 0.8 when using curl.exe HOT 7
- 'Requires libcurl' when using 'tools.py --libcurl' HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from px.