Greeting,
I installed squid 3.3.9 on debian and couldn't access to cache manager with
authentication :(
If i remove http_access allow authenticated line, i can access to!
That's a part of my config:
cache_mgr ad...@example.com
cachemgr_passwd MYPASS all
auth_param digest program
Hello squid-users,
I think my clients wait for a long time to view web pages.
Would you mind suggesting a way to solve this problem?
All the Best ...
On Tuesday 24 December 2013 at 10:55:57, zeagus zpt wrote:
Hello squid-users,
I think my clients wait for a long time to view web pages.
Would you mind suggesting a way to solve this problem?
All the Best ...
1. What speed interconnect do you have between clients and Squid?
2. What speed
Hi Eugene,
I am not sure of the cause, but it must be somewhere deep in the ldap
or kerberos library. I have seen this behaviour before on Solaris only.
Markus
Eugene M. Zheganin wrote in message
news:52b91c8a.4080...@norma.perm.ru...
Hi.
On 23.12.2013 22:39, Markus Moeller wrote:
Hi Amos,
So in this case the Samba ntlm_auth helper would need to escape the
output. Does the Samba team know ? I use
ntlm_auth -V
Version 3.6.12-59.13.1-3108-SUSE-SL12.3-x86_64
Markus
Amos Jeffries wrote in message news:52b8f0f8@treenet.co.nz...
On 24/12/2013 6:59 a.m., Markus
How do you start the service ? Do you use systemctl ? If so you may need
to add KRB5_KTNAME=/etc/squid/squid.keytab to
/etc/sysconfig/squid
Markus
flypast wrote in message news:1387845981524-4664010.p...@n4.nabble.com...
hi Markus,
Please see the below. I just temporally change access
Hi Brian,
Based on my knowledge it is not possible to use negotiate ( Kerberos or
NTLM ) without AD/Samba.
Regards
Markus
Brian J. Murrell wrote in message
news:1387692922.21328.2.ca...@pc.interlinx.bc.ca...
Hi Eugene,
Could you tell me which OS , kerberos, ldap and sasl version you use ?
Markus
Eugene M. Zheganin wrote in message
news:52b91c8a.4080...@norma.perm.ru...
Hi.
On 23.12.2013 22:39, Markus Moeller wrote:
Hi Eugene,
I can only guess that the memory cache is not working. Can you
Hi Amos,
That looks better.
Thank you
Markus
Amos Jeffries wrote in message news:52b8f376.7070...@treenet.co.nz...
On 24/12/2013 3:27 p.m., Amos Jeffries wrote:
On 24/12/2013 6:59 a.m., Markus Moeller wrote:
snip
kerberos_ldap_group.cc(329): pid=16122 :2013/12/23 17:45:58|
On Tue, 2013-12-24 at 13:42 +, Markus Moeller wrote:
Hi Brian,
Hi Markus,
Based on my knowledge it is not possible to use negotiate ( Kerberos or
NTLM ) without AD/Samba.
Yeah, I guess I mis-represented my limitations. I don't mind setting up
a Samba PDC if that's necessary. Where
[ Changed the subject to get down to the more basic issue ]
On Tue, 2013-12-24 at 16:20 +1300, Amos Jeffries wrote:
This is not an assumption from the documentation. NTLM protocol
*requires* a DC to operate.
TL;DR: Do windows machines *have* to join a domain in order to use NTLM
with Squid?
Hi Brian,
The users Windows machine does not require to join the domain. When
you configure Squid with negotiate and the user has squid as proxy
configured he will get a popup into which he can type user@domain e.g.
mar...@win2003r2.home plus the password. The Windows machine will use
Hi Brian,
I forgot to say that I have not tested the case where there is a trust
between the AD/Samba server and the Linux kdc. I have tested the other case
though.
Markus
Markus Moeller wrote in message news:l9co5k$672$1...@ger.gmane.org...
Hi Brian,
The users Windows machine does
On 25/12/2013 3:40 a.m., Markus Moeller wrote:
Hi Amos,
That looks better.
Thank you. I've applied this to Squid-3 it will be in 3.4.2.
Amos
On Tue, Dec 24, 2013 at 7:54 PM, Brian J. Murrell br...@interlinx.bc.ca wrote:
[ Changed the subject to get down to the more basic issue ]
On Tue, 2013-12-24 at 16:20 +1300, Amos Jeffries wrote:
This is not an assumption from the documentation. NTLM protocol
*requires* a DC to operate.
Hey Brian,
Please try to define from scratch the issue and the needs.
Describe the network in a manner of IP level and also in the users level.
As I understood that it's a LAN with a proxy it will be very different
to setup this squid instance in a way that will fit your needs.
If it's a wifi
Hi Marcus,
Please see my current /etc/init.d/squid file. I had added your suggested
content.
[root@proxy01 ~]# cd /etc/init.d/
[root@proxy01 init.d]# more squid
#!/bin/bash
# chkconfig: - 90 25
# pidfile: /var/run/squid.pid
# config: /etc/squid/squid.conf
#
### BEGIN INIT INFO
# Provides: squid
17 matches
Mail list logo