? For example, on a smartphone I cannot install my certific=
ate. How is this case?
Regards,
Delton
The problem was --cond 'enabled=1'. Without it worked.
Thanks!
Em 18/05/2013 00:38, Amos Jeffries escreveu:
On 18/05/2013 6:49 a.m., Delton wrote:
Dear guys,
I'm testing in MySql authentication via 'basic_db_auth'.
I ran the test and it worked:
/lib/squid3/basic_db_auth --user squid
Using the dstdomain http://www.facebook.com is blocked and you receive
the error page of Squid, but when accessing https://www.facebook is
displayedthe proxy server connection refused, not the Squid error page.
Em 17/05/2013 11:57, Amos Jeffries escreveu:
On 18/05/2013 1:41 a.m., Hussam
Dear guys,
I'm testing in MySql authentication via 'basic_db_auth'.
I ran the test and it worked:
/lib/squid3/basic_db_auth --user squid --password password --md5 --cond
'enabled=1' --persis
testuser test
OK
But in the Squid error is returned:
2013/05/17 15:43:17.868 kid1|
Guys,
I ran some more tests.
Only authentication with 'Basic' - worked on devices inside and outside
the domain, but asks for password;
With only authentication 'Kerberos' - worked in the domain and does not
prompt for password;
Authentication 'Kerberos' and 'Basic':
1 - worked in the domain
Dear Sirs,
I configured Squid 3.3.3 with Kerberos and NTLM authentication successfully.
When I enable only Kerberos authentication, domain computers browse
normally and there is no password required.
When I enable only NTLM authentication, domain computers also browse
normally and there is no
That's what (I think) I tried:
auth_param negotiate program /usr/local/bin/squid_kerb_auth -d -s
HTTP/squidserver.bnpapeis.local
auth_param negotiate children 5
auth_param negotiate keep_alive on
auth_param ntlm program /usr/bin/ntlm_auth
--helper-protocol=squid-2.5-ntlmssp
auth_param ntlm
You can see an example of authentication using Kerberos here
http://www.howtoforge.com/debian-squeeze-squid-kerberos-ldap-authentication-active-directory-integration-and-cyfin-reporter
or here http://wiki.squid-cache.org/ConfigExamples/Authenticate/Kerberos
Em 21/03/2013 19:18, Leonardo
Hi!
I opened the bug 3816: http://bugs.squid-cache.org/show_bug.cgi?id=3816
Em 20/03/2013 20:24, Alex Rousskov escreveu:
On 03/20/2013 12:46 PM, Delton wrote:
I rearranged the steps as I understand that happen:
1. Client connects and sends plain CONNECT to Squid;
2. Squid sends 200 OK
Em 20/03/2013 02:19, Amos Jeffries escreveu:
On 20/03/2013 9:48 a.m., Alex Rousskov wrote:
On 03/19/2013 01:27 PM, Delton wrote:
Dear,
I compiled Squid 3.3.3 on a Debian 7 with the --enable-ssl and
--enable-ssl-crtd.
I wish Squid exhibit an error message to the user to access a blocked
page
Em 20/03/2013 12:00, Alex Rousskov escreveu:
On 03/20/2013 04:54 AM, Delton wrote:
When accessing any site over HTTP everything works.
For HTTPS, when the site is not blocked it is displayed with
problems. Some objects need to be recharged for display.
It is unlikely that we will be able
Em 20/03/2013 12:00, Alex Rousskov escreveu:
On 03/20/2013 04:54 AM, Delton wrote:
When accessing any site over HTTP everything works.
For HTTPS, when the site is not blocked it is displayed with
problems. Some objects need to be recharged for display.
It is unlikely that we will be able
Does not the browser connect to Squid using HTTP CONNECT method? Your
Squid configuration did not show any signs of interception IIRC so the
browser should use a CONNECT method to send an HTTP request. Why is your
browser connecting to the server (instead of Squid)? If by server you
meant Squid,
Em 20/03/2013 14:45, Alex Rousskov escreveu:
On 03/20/2013 11:27 AM, Delton wrote:
The first time when accessing(direct, no F5):
1363776566.837 0 192.168.0.52 TCP_DENIED/200 0 CONNECT
www.facebook.com:443 - HIER_NONE/- -
1363776566.912 0 192.168.0.52 NONE/403 3575 GET
https
Dear,
I compiled Squid 3.3.3 on a Debian 7 with the --enable-ssl and
--enable-ssl-crtd.
I wish Squid exhibit an error message to the user to access a blocked
page, for example https://www.facebook.com
It worked more or less: imported the root certificate in the browser and
access an HTTPS
15 matches
Mail list logo
