Christoph Haas wrote:
On Tuesday 15 November 2005 04:06, Matt Alexander wrote:
In the cache.log, we get squid restarting about once a minute:
(squid_ldap_auth): error.c:221: ldap_parse_result: Assertion `r !=
((void *)0)' failed.
The external authenticator (squid_ldap_auth) has
Colin Farley wrote:
Once you run the command you need to input username and password:
$ /usr/lib/squid/squid_ldap_auth -b dc=domain,dc=com -D
cn=squid,ou=is,dc=domain,dc=com -w squid ldapserver
user password
Hmmm... using tcpdump/ethereal, I get this error:
W80090308: LdapErr:
We have a RedHat 7.2 box running squid-2.4.STABLE1-6. Today we started
getting these errors in /var/log/messages:
(squid): Too few authenticator processes are running
squid[26701]: Squid Parent: child process 5208 exited with status 1
dansguardian: Error connecting to proxy
In the cache.log,
On 7/22/05, Matt Alexander [EMAIL PROTECTED] wrote:
Matt Alexander wrote:
I'm drowning in these messages (about every 10 seconds) since the last
patch for the DNS vulnerability. Users then get failed connection
messages. Is there a bug in the patch?
Jul 22 09:17:59 proxy squid[16549
On 7/22/05, Matt Alexander [EMAIL PROTECTED] wrote:
Matt Alexander wrote:
I'm drowning in these messages (about every 10 seconds) since the last
patch for the DNS vulnerability. Users then get failed connection
messages. Is there a bug in the patch?
Jul 22 09:17:59 proxy squid[16549
On 7/26/05, Matt Alexander [EMAIL PROTECTED] wrote:
On 7/22/05, Matt Alexander [EMAIL PROTECTED] wrote:
Matt Alexander wrote:
I'm drowning in these messages (about every 10 seconds) since the last
patch for the DNS vulnerability. Users then get failed connection
messages
Whenever http://www.k12foodservice.com/ is accessed, Squid restarts
with the following message:
Jul 21 16:15:40 proxy squid[25842]: Squid Parent: child process 25844
exited due to signal 6
Jul 21 16:15:43 proxy squid[25842]: Squid Parent: child process 26486 started
Our setup is somewhat
I'm drowning in these messages (about every 10 seconds) since the last
patch for the DNS vulnerability. Users then get failed connection
messages. Is there a bug in the patch?
Jul 22 09:17:59 proxy squid[16549]: Squid Parent: child process 20248
exited due to signal 6
Jul 22 09:18:02 proxy
On 7/21/05, Matt Alexander [EMAIL PROTECTED] wrote:
Whenever http://www.k12foodservice.com/ is accessed, Squid restarts
with the following message:
Jul 21 16:15:40 proxy squid[25842]: Squid Parent: child process 25844
exited due to signal 6
Jul 21 16:15:43 proxy squid[25842]: Squid Parent
I have squid-2.5.STABLE3-6.3E.8 (RedHat ES 3 RPM) configured to do
NTLM authentication using winbind. This works great, however, Java
applets prompt for a login, but never accept it. Is there a way to
get Java applets to work? They work fine through the old proxy that
does basic authentication
I've successfully configured Squid to use our Active Directory server
for authentication, however, there's one remaining problem... If the
page contains a Java applet, then the user gets a popup Java
authentication dialog box. However, the correct username and password
are never accepted,
How would I configure Squid to cache the Windows Update patches?
Thanks,
~M
--
Get Firefox!
http://getfirefox.com/
I have Squid configured to authenticate users to our Active Directory
and verify that they're in the Internet group before allowing access
to the web.
However, there are some URLs that we want anyone to access without
requiring authentication. How would I configure Squid to bypass the
I use a patched version of DansGuardian with ClamAV:
http://www.harvest.com.br/asp/afn/dg.nsf
On Fri, 12 Nov 2004 11:27:49 +0300, Abdock [EMAIL PROTECTED] wrote:
Hello Experts,
I have set up squid as transparent, and doing only web caching. The box acts
as the gateway. No proxy all
Can you send us the part of your squid.conf that's doing the authentication?
On Wed, 10 Nov 2004 11:49:32 GMT, [EMAIL PROTECTED]
[EMAIL PROTECTED] wrote:
Hello list,
I just have compiled, configured and get working squid authenticating
against an Active Directory. I have set up what groups
##
- Original Message -
From: Matt Alexander [EMAIL PROTECTED]
Date: Wednesday, November 10, 2004 2:47 pm
Subject: Re: [squid-users] Problems while trying to authenticate using NTML
Can you send us the part of your
Is this a RH ES 3 box? There's a Perl bug that causes the shellwords
function to fail in wbinfo_group.pl. Also, you'll need to fix the
wbinfo_group.pl script to strip off the Domain Group stuff after
wbinfo gets the group SID. Here's a replacement for the check
subroutine:
sub check {
I'd like Squid to be configured to allow all traffic except for a list
of ad servers, but it doesn't seem to be working...
I have the following line in Squid:
acl ads dstdom_regex -i /etc/squid/adservers
http_access deny ads
The adservers file then contains regex expressions for various ad
than a hit per second or so.
Chris
-Original Message-
From: Matt Alexander [mailto:[EMAIL PROTECTED]
Sent: Friday, November 05, 2004 10:39 AM
To: Chris Robertson
Subject: Re: [squid-users] http_access allow ...
No errors in cache.log. This worked previously when
On Thu, 4 Nov 2004 11:41:21 +0100 (CET), Henrik Nordstrom
[EMAIL PROTECTED] wrote:
On Thu, 4 Nov 2004, John wrote:
Thanks for the reply. Does this mean that I need to set up and run samba
server on the squid box?
Only if you want to use the ntlm authentication scheme.
Provided you are
Squidalyzer will import the access.log into a MySQL database:
http://squidalyser.sourceforge.net/
On Wed, 3 Nov 2004 12:17:25 -0600, Hunter, Jess [EMAIL PROTECTED] wrote:
Is it possible to have the access.log file be ported into a MySQL database
automatically.
If so, could someone shed
You'll need to edit your samba config file for your particular domain,
start winbindd, and add the following to your squid.conf:
auth_param ntlm program /usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp
auth_param ntlm children 20
auth_param ntlm max_challenge_reuses 0
auth_param ntlm
- Original Message -
From: Matt Alexander [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Thursday, November 04, 2004 12:03 AM
Subject: Re: [squid-users] Squid and Active Directory
You'll need to edit your samba config file for your particular domain,
start winbindd, and add the following
Since Dansguardian doesn't support NTLM authentication, could someone
give me step-by-step directions or point me to a HOWTO for configuring
two squid processes on the same box? The first squid would handle the
authentication and then pass the request to Dansguardian which would
then pass it to
:50:17 -0700, Tomás Rodriguez Orta
[EMAIL PROTECTED] wrote:
I use the Dansguardian program it is very well, it can use an plugin with
the clamAV, I invite you visite the web sitie www.dansguardian.org
ok?
regards TOMAS
- Original Message -
From: Matt Alexander [EMAIL PROTECTED
Currently all users are authenticated before accessing the Internet by
using LDAP with Squid to the AD server. We're concerned about the
browser sending the login/pass to the Squid server unencrypted
(base64).
Would using NTLM or winbind authentication with Squid avoid the
password-in-the-clear
On Thu, 16 Sep 2004 01:11:13 +0200 (CEST), Henrik Nordstrom
[EMAIL PROTECTED] wrote:
On Wed, 15 Sep 2004, Matt Alexander wrote:
Would using NTLM or winbind authentication with Squid avoid the
password-in-the-clear problem? If not, does anyone have another
suggestion for this problem
27 matches
Mail list logo