trying to spec proxy server

Re: trying to spec proxy server (auto-response by Kwangsoo)

This is an automatic response.

I will be away from office till Aug 5 (Thursday).
As soon as I am back to work, I will respond to your email.

Thank you,

Kwangsoo 

---
You are currently subscribed to ezproxy as: gee-ezproxy <at> gmane.org
To unsubscribe send a blank email to leave-ezproxy-58098R <at> ls.suny.edu

Re: require on-campus authentication for some resources

Many thanks Chris,

Cecilia

>>> zagar <at> usefulutilities.com 07/30/04 16:27 PM >>>
> Does anyone know how to configure EZproxy to require on-campus 
> authentication for certain resources? We have a few public machines in 
> the library which do not require a Novell login and we would like to 
> restrict access to some resources from those machines. Certain vendors 
> only want current students to access their databases/sites from those 
> machines.

In ezproxy.cfg, move the database definitions for those resources so they 
appear before your ExcludeIP (E) lines.  After the change, people will be 
required to login for those resources.

However, keep in mind that if your campus IP is still recognized by the 
vendor, people could use direct URLs to slip around this restriction.

Chris

--

-- 
Chris Zagar <zagar <at> usefulutilities.com>
Useful Utilities <http://www.usefulutilities.com>

---
You are currently subscribed to ezproxy as: ccastillo <at> trentu.ca
To unsubscribe send a blank email to leave-ezproxy-58098R <at> ls.suny.edu

---
You are currently subscribed to ezproxy as: gee-ezproxy <at> gmane.org
To unsubscribe send a blank email to leave-ezproxy-58098R <at> ls.suny.edu

EZproxy 3.0a GA (2004-08-02) released

On this fifth anniversary of the initial release of EZproxy, Useful 
Utilities is pleased to announce that EZproxy 3.0a GA (2004-08-02) is now 
available for download.

Originally called EZproxy 2.6 during beta testing, this update has been 
named 3.0 to simplify the delineation of new features introduced in this 
update.

This update is provided to all licensed users of EZproxy for no additional 
cost.

The most frequently requested enhancement that appears in this release is 
enhanced LDAP support, including the ability to alter access based on 
whether or not users hold certain LDAP attributes.

This update is available for download at:

 	http://www.usefulutilities.com/download/

A list of changes in this release is available at:

 	http://www.usefulutilities.com/support/changes.html

In case you are wondering what is next, EZproxy is currently being enabled 
to act as a Shibboleth Service Provider.  With this change, EZproxy will 
be able to seamlessly authenticate within a Shibboleth environment.  If 
you have any interesting in participating in the beta testing of 
Shibboleth features, please contact me directly.

If you have any questions, please let me know.

Chris

--

-- 
Chris Zagar <zagar <at> usefulutilities.com>
Useful Utilities <http://www.usefulutilities.com>

---
You are currently subscribed to ezproxy as: gee-ezproxy <at> gmane.org
To unsubscribe send a blank email to leave-ezproxy-58098R <at> ls.suny.edu

Web of Science - Journal Citation Reports - and WOS

We have been having the problem sporadically.  Restarting EzProxy solves 
the problem.

The log file shows the bouncing between 302 responses and 404 responses, 
but the url EZproxy is trying varies.

Has anyone figured out why this is happening?  I am able to get to other 
sites through EZproxy, even when I can't get to ISI.

We are running 2.6a (beta)

Thanks,

Paul

At 10:25 AM 7/29/2004 -0400, Gordon Cochrane wrote:
>I just had the same issue, heading down to restart the server.  I also 
>just received a message from ISI announcing upgrades.
>
>
>IAt 07:32 AM 7/29/2004 -0500, you wrote:
>>We just had an interesting problem with Journal Citation Reports.
>>
>>Selected Journal Citation Reports
>>Logged into ezproxy
>>JCR would just continuosly reload
>>
>>Stopped the proxy
>>Restarted the Proxy
>>
>>Then it seemed to work normal.  Not sure it restarting the problem fixed
>>it or if it was a problem with JCR.
>>Has anybody ran into this?
>>
>>Don
>>
>>
>>---
>>You are currently subscribed to ezproxy as: gmcochr <at> clemson.edu
>>To unsubscribe send a blank email to leave-ezproxy-58098R <at> ls.suny.edu
>
>
>---
>You are currently subscribed to ezproxy as: aloisio <at> hulmail.harvard.edu
>To unsubscribe send a blank email to leave-ezproxy-58098R <at> ls.suny.edu

email: paul_aloisio <at> harvard.edu
phone: (617) 495-3724

Paul Aloisio
Systems Librarian
Harvard University Library
Office for Information Systems
1280 Massachusetts Avenue, Suite 404
Cambridge, MA 02138 

---
You are currently subscribed to ezproxy as: gee-ezproxy <at> gmane.org
To unsubscribe send a blank email to leave-ezproxy-58098R <at> ls.suny.edu

Attacks on EZproxy servers

Recently, I have received a handful of reports from sites indicating that 
they have noticed attempts to brute force access into their EZproxy 
servers.  To help combat this issue, the new EZproxy 3.0 contains a 
feature that allows EZproxy to detect repeated attempts and temporarily 
lock out the IP addresses of such attackers.

These attackers know that demo is a default username with EZproxy, so I 
would urge all sites to double-check that you disabled the demo username 
when you went into production.  If your site uses CGI authentication, I 
would recommend that you check ezproxy.usr to insure that you are not 
using the sample "cgiuser:cgipass" for your production server.

If you are interested in the intruder detection features of EZproxy 3.0, 
see:

 	http://www.usefulutilities.com/support/cfg/intruderattempts/

for configuration information.

Chris

--

-- 
Chris Zagar <zagar <at> usefulutilities.com>
Useful Utilities <http://www.usefulutilities.com>

---
You are currently subscribed to ezproxy as: gee-ezproxy <at> gmane.org
To unsubscribe send a blank email to leave-ezproxy-58098R <at> ls.suny.edu

Re: Sciencedirect and saved searches

Ewww... And I thought some of my URLs were ugly !!!

I can almost certainly say that this is not an ezproxy problem, but what 
browser / OS were you using ?

Jon

_________________________________________________
Jon Biddell
HRMIS Systems Administrator
ITCS, Mount St Mary Campus
Australian Catholic University Limited
ABN 15 050 192 660
25 A Barker Road   Strathfield NSW 2135
Tel: (61 +2) 9701 4248   Fax; (61 +2)  9701 4105
Mobile: 0419 422 537

David Groenewegen <david.groenewegen <at> lib.monash.edu.au>
30/07/2004 10:00 AM
Please respond to "EZProxy discussion list"

        To:     "EZProxy discussion list" <ezproxy <at> ls.suny.edu>
        cc: 
        Subject:        [ezproxy] Sciencedirect and saved searches

Dear all,

We've noticed recently that we can't save searches in Sciencedirect
anymore. The log in works, and we have ssl enabled, but when you try and
save a search you get:

"Sorry, your request could not be processed because the format of the
URL was incorrect. Contact the Help Desk if the problem persists.
[SD-001]"

The URL that produces the error page is (just an example):

"
http://www.sciencedirect.com.ezproxy.lib.monash.edu.au/science?_ob=MiamiSDIURL&_method=saveAlert&_alid=190048525&_sort=d&_acct=C000027659&_prevURL=http%3A%2F%2Fwww.sciencedirect.com.ezproxy.lib.monash.edu.au%2Fscience%3F_ob%3DArticleListURL%26_method%3Dlist%26_ArticleListID%3D190048525%26_sort%3Dd%26_st%3D4%26_acct%3DC000027659%26_version%3D1%26_urlVersion%3D0%26_userid%3D595855%26md5%3Ddc666218bdb590ec8c88ba5b44136a55&_saveSearchUrl=%2Fscience%3F_ob%3DMiamiSearchURL%26_method%3DsaveSearch%26_ArticleListID%3D190048525%26_sort%3Dd%26_acct%3DC000027659%26_version%3D1%26_urlVersion%3D1%26_userid%3D595855%26md5%3De1dbf6f199c34763dab5acc1d1def770&_alertCount=0&md5=686643cb5bdcc7eb18b21d9756fb51db&SearchTitle=pub-date+%3E+2002+and+TITLE-ABSTR-KEY%28islet+transplantation%29+and+TITLE-ABSTR-KEY%28diabetes%29&alertName=diabetes1&emailAddress=David.Groenewegen <at> lib.monash.edu.au&Frequency=6&x=56&y=
 13
"

Sciencedirect help claim that this is an EZProxy problem, but as far as
I can tell EZProxy is working as expected. We have a very simple config:

T Elsevier ScienceDirect
U http://www.sciencedirect.com/
DJ sciencedirect.com
DJ elsevier.com
HJ linkinghub.elsevier.com

which seems to work for everything else. Has anyone else encountered
this? Any solutions?

D
-- 
David Groenewegen
Digital Resources Librarian
Information Resources Division
Monash University Library
Building 67
Monash University VIC 3800
AUSTRALIA

Ph: +61 3 9905 1593
Fx: +61 3 9905 2617
email: david.groenewegen <at> lib.monash.edu.au

---
You are currently subscribed to ezproxy as: j.biddell <at> mary.acu.edu.au
To unsubscribe send a blank email to leave-ezproxy-58098R <at> ls.suny.edu

---
You are currently subscribed to ezproxy as: gee-ezproxy <at> gmane.org
To unsubscribe send a blank email to leave-ezproxy-58098R <at> ls.suny.edu

Re: Attacks on EZproxy servers

Will this change also log these locked-out IPs to a separate log file so 
the appropriate punative action can be taken against these miscreants ?
_________________________________________________
Jon Biddell
HRMIS Systems Administrator
ITCS, Mount St Mary Campus
Australian Catholic University Limited
ABN 15 050 192 660
25 A Barker Road   Strathfield NSW 2135
Tel: (61 +2) 9701 4248   Fax; (61 +2)  9701 4105
Mobile: 0419 422 537

Chris Zagar <zagar <at> usefulutilities.com>
03/08/2004 08:02 AM
Please respond to "EZProxy discussion list"

        To:     "EZProxy discussion list" <ezproxy <at> ls.suny.edu>
        cc: 
        Subject:        [ezproxy] Attacks on EZproxy servers

Recently, I have received a handful of reports from sites indicating that 
they have noticed attempts to brute force access into their EZproxy 
servers.  To help combat this issue, the new EZproxy 3.0 contains a 
feature that allows EZproxy to detect repeated attempts and temporarily 
lock out the IP addresses of such attackers.

These attackers know that demo is a default username with EZproxy, so I 
would urge all sites to double-check that you disabled the demo username 
when you went into production.  If your site uses CGI authentication, I 
would recommend that you check ezproxy.usr to insure that you are not 
using the sample "cgiuser:cgipass" for your production server.

If you are interested in the intruder detection features of EZproxy 3.0, 
see:

                 
http://www.usefulutilities.com/support/cfg/intruderattempts/

for configuration information.

Chris

--

-- 
Chris Zagar <zagar <at> usefulutilities.com>
Useful Utilities <http://www.usefulutilities.com>

---
You are currently subscribed to ezproxy as: j.biddell <at> mary.acu.edu.au
To unsubscribe send a blank email to leave-ezproxy-58098R <at> ls.suny.edu

---
You are currently subscribed to ezproxy as: gee-ezproxy <at> gmane.org
To unsubscribe send a blank email to leave-ezproxy-58098R <at> ls.suny.edu

Re: Attacks on EZproxy servers

> Will this change also log these locked-out IPs to a separate log file so
> the appropriate punative action can be taken against these miscreants ?

Once "IntruderAttempts" failed attempts have passed, EZproxy starts 
logging information on the intrusion attempts to ezproxy.msg.

Chris

--

-- 
Chris Zagar <zagar <at> usefulutilities.com>
Useful Utilities <http://www.usefulutilities.com>

---
You are currently subscribed to ezproxy as: gee-ezproxy <at> gmane.org
To unsubscribe send a blank email to leave-ezproxy-58098R <at> ls.suny.edu

Re: Attacks on EZproxy servers

OK - suggestion for the next release: have all IntruderAttempts also 
logged to intruder.log as well - just date, time and IP should be 
sufficient. 

_________________________________________________
Jon Biddell
HRMIS Systems Administrator
ITCS, Mount St Mary Campus
Australian Catholic University Limited
ABN 15 050 192 660
25 A Barker Road   Strathfield NSW 2135
Tel: (61 +2) 9701 4248   Fax; (61 +2)  9701 4105
Mobile: 0419 422 537

Chris Zagar <zagar <at> usefulutilities.com>
03/08/2004 10:14 AM
Please respond to "EZProxy discussion list"

        To:     "EZProxy discussion list" <ezproxy <at> ls.suny.edu>
        cc: 
        Subject:        [ezproxy] Re: Attacks on EZproxy servers

> Will this change also log these locked-out IPs to a separate log file so
> the appropriate punative action can be taken against these miscreants ?

Once "IntruderAttempts" failed attempts have passed, EZproxy starts 
logging information on the intrusion attempts to ezproxy.msg.

Chris

--

-- 
Chris Zagar <zagar <at> usefulutilities.com>
Useful Utilities <http://www.usefulutilities.com>

---
You are currently subscribed to ezproxy as: j.biddell <at> mary.acu.edu.au
To unsubscribe send a blank email to leave-ezproxy-58098R <at> ls.suny.edu

---
You are currently subscribed to ezproxy as: gee-ezproxy <at> gmane.org
To unsubscribe send a blank email to leave-ezproxy-58098R <at> ls.suny.edu