[squid-users] Problem in access to cache manager

Greeting, I installed squid 3.3.9 on debian and couldn't access to cache manager with authentication :( If i remove http_access allow authenticated line, i can access to! That's a part of my config: cache_mgr ad...@example.com cachemgr_passwd MYPASS all auth_param digest program

[squid-users] Slow loading WEB-PAGES

Hello squid-users, I think my clients wait for a long time to view web pages. Would you mind suggesting a way to solve this problem? All the Best ...

Re: [squid-users] Slow loading WEB-PAGES

On Tuesday 24 December 2013 at 10:55:57, zeagus zpt wrote: Hello squid-users, I think my clients wait for a long time to view web pages. Would you mind suggesting a way to solve this problem? All the Best ... 1. What speed interconnect do you have between clients and Squid? 2. What speed

[squid-users] Re: squid_kerb_group (again)

Hi Eugene, I am not sure of the cause, but it must be somewhere deep in the ldap or kerberos library. I have seen this behaviour before on Solaris only. Markus Eugene M. Zheganin wrote in message news:52b91c8a.4080...@norma.perm.ru... Hi. On 23.12.2013 22:39, Markus Moeller wrote:

[squid-users] Re: Escape/Unescape of helper input/output question

Hi Amos, So in this case the Samba ntlm_auth helper would need to escape the output. Does the Samba team know ? I use ntlm_auth -V Version 3.6.12-59.13.1-3108-SUSE-SL12.3-x86_64 Markus Amos Jeffries wrote in message news:52b8f0f8@treenet.co.nz... On 24/12/2013 6:59 a.m., Markus

[squid-users] Re: squid proxy kerberos authentication failure. Help!!!

How do you start the service ? Do you use systemctl ? If so you may need to add KRB5_KTNAME=/etc/squid/squid.keytab to /etc/sysconfig/squid Markus flypast wrote in message news:1387845981524-4664010.p...@n4.nabble.com... hi Markus, Please see the below. I just temporally change access

[squid-users] Re: authenticate to pam's DB on squid machine with NTLM

Hi Brian, Based on my knowledge it is not possible to use negotiate ( Kerberos or NTLM ) without AD/Samba. Regards Markus Brian J. Murrell wrote in message news:1387692922.21328.2.ca...@pc.interlinx.bc.ca...

[squid-users] Re: squid_kerb_group (again)

Hi Eugene, Could you tell me which OS , kerberos, ldap and sasl version you use ? Markus Eugene M. Zheganin wrote in message news:52b91c8a.4080...@norma.perm.ru... Hi. On 23.12.2013 22:39, Markus Moeller wrote: Hi Eugene, I can only guess that the memory cache is not working. Can you

[squid-users] Re: Escape/Unescape of helper input/output question

Hi Amos, That looks better. Thank you Markus Amos Jeffries wrote in message news:52b8f376.7070...@treenet.co.nz... On 24/12/2013 3:27 p.m., Amos Jeffries wrote: On 24/12/2013 6:59 a.m., Markus Moeller wrote: snip kerberos_ldap_group.cc(329): pid=16122 :2013/12/23 17:45:58|

[squid-users] Re: authenticate to pam's DB on squid machine with NTLM

On Tue, 2013-12-24 at 13:42 +, Markus Moeller wrote: Hi Brian, Hi Markus, Based on my knowledge it is not possible to use negotiate ( Kerberos or NTLM ) without AD/Samba. Yeah, I guess I mis-represented my limitations. I don't mind setting up a Samba PDC if that's necessary. Where

[squid-users] Do windows machines *have* to join a domin to use NTLM?

[ Changed the subject to get down to the more basic issue ] On Tue, 2013-12-24 at 16:20 +1300, Amos Jeffries wrote: This is not an assumption from the documentation. NTLM protocol *requires* a DC to operate. TL;DR: Do windows machines *have* to join a domain in order to use NTLM with Squid?

[squid-users] Re: authenticate to pam's DB on squid machine with NTLM

Hi Brian, The users Windows machine does not require to join the domain. When you configure Squid with negotiate and the user has squid as proxy configured he will get a popup into which he can type user@domain e.g. mar...@win2003r2.home plus the password. The Windows machine will use

[squid-users] Re: authenticate to pam's DB on squid machine with NTLM

Hi Brian, I forgot to say that I have not tested the case where there is a trust between the AD/Samba server and the Linux kdc. I have tested the other case though. Markus Markus Moeller wrote in message news:l9co5k$672$1...@ger.gmane.org... Hi Brian, The users Windows machine does

Re: [squid-users] Re: Escape/Unescape of helper input/output question

On 25/12/2013 3:40 a.m., Markus Moeller wrote: Hi Amos, That looks better. Thank you. I've applied this to Squid-3 it will be in 3.4.2. Amos

Re: [squid-users] Do windows machines *have* to join a domin to use NTLM?

On Tue, Dec 24, 2013 at 7:54 PM, Brian J. Murrell br...@interlinx.bc.ca wrote: [ Changed the subject to get down to the more basic issue ] On Tue, 2013-12-24 at 16:20 +1300, Amos Jeffries wrote: This is not an assumption from the documentation. NTLM protocol *requires* a DC to operate.

Re: [squid-users] authenticate to pam's DB on squid machine with NTLM

Hey Brian, Please try to define from scratch the issue and the needs. Describe the network in a manner of IP level and also in the users level. As I understood that it's a LAN with a proxy it will be very different to setup this squid instance in a way that will fit your needs. If it's a wifi

[squid-users] Re: squid proxy kerberos authentication failure. Help!!!

Hi Marcus, Please see my current /etc/init.d/squid file. I had added your suggested content. [root@proxy01 ~]# cd /etc/init.d/ [root@proxy01 init.d]# more squid #!/bin/bash # chkconfig: - 90 25 # pidfile: /var/run/squid.pid # config: /etc/squid/squid.conf # ### BEGIN INIT INFO # Provides: squid