Hi. My company is looking for a type of URL filtering solution with some difficult requirements.
The general idea is similiar to a firewall - any given user can be granted or denied permission to access any given web site. I believe that this general idea is supported by squid. However, my company wants to manage permission granting through LDAP - ie if a given user is a member of a certain group, he is to be granted permission to access a given site. I understand that squid has a LDAP module which might support this type of authorization. However, we had a bad experience using web proxies, so we would much prefer a bridge-based solution. I understand that squid can be set up as a (transparent) bridge. However, if squid is a bridge, how can it use LDAP authorization ? I guess what would be ideal is if the browser (IE on XP) would send the user's login ID in some x- header in the http packet stream, and then squid would look that up in the LDAP database to see what group the user is a member of. Does anyone have any idea if something like this is possible ? TIA. Aharon -- The day is short, and the work is great, | Aharon Schkolnik and the laborers are lazy, and the reward | is great, and the Master of the house is | [EMAIL PROTECTED] impatient. - Ethics Of The Fathers Ch. 2 | 050-8724844 ================================================================= To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
