Greetings,
The following patch is for Squid 2.5-STABLE10. It makes the username returned
from an external acl command part of the request data structure and encodes it
using base64 between cache peers. This is for auditing purposes so that
subsequent caches in the chain can see the username
Check out http://naragw.sharp.co.jp/sps/. I think that this is the most simple and
effective way as long as you don't mind using proxy.pac files and/or WPAD. Your other
option is to use LVS w/ keepalived and ICP.
Regards,
David
Chris Perreault [EMAIL PROTECTED] 7/22/2004 8:02:00 AM
Do a
Muthukumar -
Two flaws in your append_domain suggestion:
1. This would only work for .com domains.
2. We already use append_domain with our domain for internal users.
Regards,
David
Muthukumar [EMAIL PROTECTED] 6/11/2004 9:12:18 AM
=
[RE] Squid code understanding and changing to your
Is it possible to pass parameters to the auth_param basic program similar to how
external_acl_type works, for instance:
external_acl_type ident_cmd %SRC /usr/libexec/check_ident
I'd like to pass the client IP to my basic auth program.
Thanks,
David
exists which would handle basic auth for more than
just IE (for instance.. what if they're using Netscape, an FTP client, Java, etc).
Sorry for such a long email... any input will be greatly appreciated!
Best regards,
David Rippel
I have identd running on all clients. Squid doesn't appear to be caching ident
lookups... maybe I'm missing something in my config for this?
If Squid could pass the ident username somehow to DG with cache_peer then DG wouldn't
need to do any ident requests (this works if you're using basic
I'm using the following configuration (squid 2.5stable4, dansguardian 2.6.1, on redhat
9):
squid(1) - dg - squid(2)
squid(1) just handles acls and uses dg as it's cache peer (cache peer ...
login=*:password).
dg provides content filtering and decodes basic auth usernames for it's log.
squid(2)
- 280 it either uses authuser OR
rfc931. I'd like to see this same behavior for cache_peer when using login=*:password
so I can pass auth usernames OR ident usernames between proxies...
David Rippel [EMAIL PROTECTED] 10/21/03 11:03AM
I'm using the following configuration (squid 2.5stable4