Re: [squid-users] NCSA Authentication...help
On Friday 11 July 2003 21.33, David Jacobs wrote: > I thought is was configured correctly until I saw > "Too few Basic Authenicator processes are running" when > I do tail -f /var/log/messages while I am trying to log in. > Is this a clear indication of a problem? Yes. Cache.log should contain a more detailed error message. Probable causes is either a wrong path specified to ncsa_auth, or invalid arguments to the same. Squid only detects the failure to start auth helpers when you first tries to authenticate. Regards Henrik -- Donations welcome if you consider my Free Squid support helpful. https://www.paypal.com/xclick/business=hno%40squid-cache.org If you need commercial Squid support or cost effective Squid or firewall appliances please refer to MARA Systems AB, Sweden http://www.marasystems.com/, [EMAIL PROTECTED]
RE: [squid-users] NCSA Authentication...help
>the passwd file is chmod 777 at this point and owned by the squid >user. I check to make sure I had auth_param children 5 and I upped it >to 15. >Not sure what is causing this the output of the ps -ax line was "1" >and here is my conf file, it is on an internal lan and I am only using >it to test if something works with a authenticated proxy. For some reason your ncsa_auth children are dying en masse. Check the cache.log for details. Also, try setting the permissions on the password file to 644. >http_port 3128 >hierarchy_stoplist cgi-bin ? >acl QUERY urlpath_regex cgi-bin \? >no_cache deny QUERY >auth_param basic program /usr/lib/squid/ncsa_auth /etc/squid/passwd >auth_param basic children 50 >auth_param basic children 5 >auth_param basic realm Squid proxy-caching web server >auth_param basic credentialsttl 2 hours >refresh_pattern ^ftp: 144020% 10080 >refresh_pattern ^gopher:14400% 1440 >refresh_pattern . 0 20% 4320 >acl manager proto cache_object >acl localhost src 127.0.0.1/255.255.255.255 >acl to_localhost dst 127.0.0.0/8 >acl SSL_ports port 443 563 >acl Safe_ports port 80 # http >acl Safe_ports port 21 # ftp >acl Safe_ports port 443 563 # https, snews >acl Safe_ports port 70 # gopher >acl Safe_ports port 210 # wais >acl Safe_ports port 1025-65535 # unregistered ports >acl Safe_ports port 280 # http-mgmt >acl Safe_ports port 488 # gss-http >acl Safe_ports port 591 # filemaker >acl Safe_ports port 777 # multiling http >acl CONNECT method CONNECT >acl foo proxy_auth REQUIRED >http_access allow foo >http_access deny all >http_access allow manager localhost >http_access deny manager >http_access deny !Safe_ports >http_access deny CONNECT !SSL_ports >http_access allow localhost >http_access deny all >http_reply_access allow all >icp_access allow all >coredump_dir /var/spool/squid Remove one of the auth_param basic children lines from squid.conf - you've got 2. Your http_access lines are a little out of order, but should work. Unless cache.log reveals something, I don't know what else to check. Adam
RE: [squid-users] NCSA Authentication...help
> I am using the RPM that comes with redhat 9. I setup NCSA > authentication and I am getting a login and password prompt > from the browser when I hit the proxy, but it does not > authenticate (I did create a passwd file using htpasswd) I > thought is was configured correctly until I saw "Too few > Basic Authenicator processes are running" when I do tail -f > /var/log/messages while I am trying to log in. Is this a > clear indication of a problem? Make sure the password file you created is readable by the user squid runs as. If not, fix it and try again. If that wasn't it, or you're still having problems, post the auth_param lines from your squid.conf and the output of the following: ps ax | grep -c "ncsa_auth" Make sure squid is running when you run that command - it counts the number of running ncsa_auth processes. Adam --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.237 / Virus Database: 115 - Release Date: 3/7/2001
Re: [squid-users] NCSA Authentication...help
David Jacobs wrote: I realize this should be a simple thing, but I am new to squid. I am using the RPM that comes with redhat 9. I setup NCSA authentication and I am getting a login and password prompt from the browser when I hit the proxy, but it does not authenticate (I did create a passwd file using htpasswd) I thought is was configured correctly until I saw "Too few Basic Authenicator processes are running" when I do tail -f /var/log/messages while I am trying to log in. Is this a clear indication of a problem? Hello David, Increase this value in your squid.conf file: authenticate_children (for example: 5 or 10) rgrds, Bart
[squid-users] NCSA Authentication...help
I realize this should be a simple thing, but I am new to squid. I am using the RPM that comes with redhat 9. I setup NCSA authentication and I am getting a login and password prompt from the browser when I hit the proxy, but it does not authenticate (I did create a passwd file using htpasswd) I thought is was configured correctly until I saw "Too few Basic Authenicator processes are running" when I do tail -f /var/log/messages while I am trying to log in. Is this a clear indication of a problem? Dave Jacobs
