El 2014-08-11 18:59, Sarah Baker escribió:
Background:
Squid: squid-3.1.23-2.el6.x86_64
OS: CentOS 6.5 - Linux 2.6.32-431.23.3.el6.x86_64 #1 SMP Thu Jul 31
17:20:5=
1 UTC 2014 x86_64 x86_64 x86_64 GNU/Linux
Issue:
I have two boxes, same OS, same squid binary, same config file, same
squid-= pas
On Mon, Aug 11, 2014 at 7:59 PM, Sarah Baker wrote:
> Background:
> Squid: squid-3.1.23-2.el6.x86_64
> OS: CentOS 6.5 - Linux 2.6.32-431.23.3.el6.x86_64 #1 SMP Thu Jul 31 17:20:5=
> 1 UTC 2014 x86_64 x86_64 x86_64 GNU/Linux
>
> Issue:
> I have two boxes, same OS, same squid binary, same config fil
Can Nabble users please post directly to the squid-users mailing list.
The Nabble forum is supposed to only be a mirror of our mailing list.
Their interface for posting often removes critical information,
re-formats submissions, and sometimes even does not deliver posts to the
mailing list.
Looks like I got it working. Not sure exactly why all of a sudden it
stopped but with Kinkie's help we cleaned up my squid.conf file and
(I'm not sure if this helped) reconnected to the domain. I think I
was already connected but redid to be on the safe side.
Eric
On Wed, Sep 25, 2013 at 1:59 PM
That's the way NTLM is supposed to work. It requires 2x 407 DENIED for
each new tcp connection.
On Wed, Sep 25, 2013 at 7:36 PM, Eric Vanderveer
wrote:
> I see "The reply for POST http://somedomain.com is DENIED because it
> matched 'ntlm_auth' but then right after I see the same thing but it
> s
I see "The reply for POST http://somedomain.com is DENIED because it
matched 'ntlm_auth' but then right after I see the same thing but it
says is ALLOWED.
On Wed, Sep 25, 2013 at 1:30 PM, Eric Vanderveer
wrote:
> Still at a loss on this. If anyone has an idea let me know.
>
>
> On Wed, Sep 25, 2
Still at a loss on this. If anyone has an idea let me know.
On Wed, Sep 25, 2013 at 12:57 PM, Eric Vanderveer
wrote:
> I am assuming you mean -V and its Version 3.6.3
>
> On Wed, Sep 25, 2013 at 12:56 PM, Kinkie wrote:
>> can you do a ntlm_auth -v?
>>
>> On Wed, Sep 25, 2013 at 6:54 PM, Eric V
I am assuming you mean -V and its Version 3.6.3
On Wed, Sep 25, 2013 at 12:56 PM, Kinkie wrote:
> can you do a ntlm_auth -v?
>
> On Wed, Sep 25, 2013 at 6:54 PM, Eric Vanderveer
> wrote:
>> I am using /usr/bin/ntlm_auth with squid.
>>
>> On Wed, Sep 25, 2013 at 12:53 PM, Kinkie wrote:
>>> so it
can you do a ntlm_auth -v?
On Wed, Sep 25, 2013 at 6:54 PM, Eric Vanderveer
wrote:
> I am using /usr/bin/ntlm_auth with squid.
>
> On Wed, Sep 25, 2013 at 12:53 PM, Kinkie wrote:
>> so it's kerberos, not ntlm, is it?
>>
>> On Wed, Sep 25, 2013 at 6:52 PM, Eric Vanderveer
>> wrote:
>>> I already
I am using /usr/bin/ntlm_auth with squid.
On Wed, Sep 25, 2013 at 12:53 PM, Kinkie wrote:
> so it's kerberos, not ntlm, is it?
>
> On Wed, Sep 25, 2013 at 6:52 PM, Eric Vanderveer
> wrote:
>> I already rejoined to the domain. I checked to make sure and I can
>> see the certificate when i do a k
so it's kerberos, not ntlm, is it?
On Wed, Sep 25, 2013 at 6:52 PM, Eric Vanderveer
wrote:
> I already rejoined to the domain. I checked to make sure and I can
> see the certificate when i do a klist.
>
> On Wed, Sep 25, 2013 at 12:45 PM, Kinkie wrote:
>> What kind of ntlm auth helper are you u
I already rejoined to the domain. I checked to make sure and I can
see the certificate when i do a klist.
On Wed, Sep 25, 2013 at 12:45 PM, Kinkie wrote:
> What kind of ntlm auth helper are you using? Samba's?
>
> If so, othe simplest reason I can think of without additional info is
> that your
What kind of ntlm auth helper are you using? Samba's?
If so, othe simplest reason I can think of without additional info is
that your machine account in AD went stale for some reason.. can you
try rejoining the domain?
On Wed, Sep 25, 2013 at 6:27 PM, Eric Vanderveer
wrote:
> Hi,
>I have be
On 11/09/11 21:41, abderrahmane abdmeziane wrote:
i don't understand it detect that the driver is available isn't ?
vbash-4.1# ./squid_db_auth
Perhaps the DBD::sqlite perl module hasn't been fully installed,
or perhaps the capitalisation of 'sqlite' isn't right.
Available drivers: DBM, Exampl
On Wed, 7 Sep 2011 23:12:46 +0200, abderrahmane abdmeziane wrote:
hey,did squid work with sqlite authentication ?,i see in
squid_db_auth
file :my $dsn = "DBI:mysql:database=squid";
so i change it my $dsn = "DBI:sqlite:database=squid"; i create the
squid database and passwd table,it dosen't work
michael_gra...@cadc.uscourts.gov wrote:
I'm running Squid 3.0 Stable 21. I have two reverse proxy sites setup with
LDAP authentication enabled.
How is the authentication prompted for (is it using HTTP auth, or a form)?
When I access either site, authentication
works fine. My problem is when
> Dear Squid users,
>
> I was wondering if the following can be accomplished in squid:
>
> Say, a user starts using the proxy
> 1 he is not logged, so he gets redirected to a webpage over https
> 2 the webpage authenticates him, and sets a cookie in his browser
> 3 he is then redirected to the orig
No you wouldn't. I guess the squid one works too, everyone just
recommends that you user the samba one. In my experience, both work
fine. Have you tried the squid one?
Kevin
On Tue, Sep 16, 2008 at 3:56 AM, Gregory Machin <[EMAIL PROTECTED]> wrote:
> then I would have to install samba from what I
Gregory Machin wrote:
then I would have to install samba from what I understand, and or
policy is not file sharing services allowed on the firewalls . Is
there a way to get a single sign on with out installing samba ?
Correct me if I'm wrong, but I don't think the NTLM helper for squid
require
then I would have to install samba from what I understand, and or
policy is not file sharing services allowed on the firewalls . Is
there a way to get a single sign on with out installing samba ?
On Mon, Sep 15, 2008 at 5:56 PM, Kevin Blackwell <[EMAIL PROTECTED]> wrote:
> Gregory,
>
> I was runni
Gregory,
I was running into the same problems. I finally for it working.
Couple of questions
1. What OS
2. Why not use ntlm_auth? Works better.
Kevin
On Mon, Sep 15, 2008 at 9:06 AM, Gregory Machin <[EMAIL PROTECTED]> wrote:
> Hi
> I'm batteling to get squid_ldap_auth to authenticate against
tis 2007-06-12 klockan 19:47 +0100 skrev Markus Moeller:
> I wrote two squid helper programs which are available at
> http://squidkerbauth.sourceforge.net/
>
> The first program is a Kerberos based authentication helper program and uses
> the Proxy Negotiate header with SPNEGO/Kerberos tokens.
fre 2007-05-11 klockan 11:30 +0100 skrev Duarte Lázaro:
> But in NTLM i cannot ( i think ) restrict a user by an attribute, if
> the user gets authenticated he has "net".
You can. But it's two different things. Don't mix up authentication and
authorization.
The purpose of authentication is sol
tor 2007-05-10 klockan 12:09 +0100 skrev Duarte Lázaro:
> i really wanna is to authenticated on ldap, but the browser not to show
> a pop-up,
> it's possible? samba ( maybe ntlm ?)
This depends entirely on browser support and which scheme you are using.
Few if browsers support fully saved prox
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 05/10/2007 08:44 AM, Duarte Lázaro wrote:
> Hi, Sergey
>
> I know that, but for example in IE ou Firefox the prompt
> still open , although the password is saved, my question
> is if there is some way that the prompt ( although the
> password is s
Hi, Sergey
I know that, but for example in IE ou Firefox the prompt still open ,
although the password is saved, my question is if there is some way that
the prompt ( although the password is save ) is not shown.
Dny way thanks for the tips.
Sergey A. Kobzar wrote:
Hello Duarte,
Many brows
Ok, i think i´m not explaining so good.
I have allready squid authentication, what i need is that the browser
does not show the prompt just get the credencials whitout prompting the
user, for example me user is part of a domain só thé get the user from
the computer and the user would not have
Hi,
i really wanna is to authenticated on ldap, but the browser not to show
a pop-up,
it's possible? samba ( maybe ntlm ?)
what does the [skipped], does ?
thanks
Sergey A. Kobzar wrote:
Hello Duarte,
If you want authenticate users from LDAP only, this configuration is
enough:
auth_param
Hello Duarte,
If you want authenticate users from LDAP only, this configuration is
enough:
auth_param basic program /usr/local/libexec/squid/squid_ldap_auth -b
"ou=People,dc=test,dc=com" ldap.test.com
auth_param basic children 5
auth_param basic realm Squid proxy-caching web server
[skipped]
acl
Hi Adrian,
At 15.28 18/03/2007, Adrian Chadd wrote:
On Sun, Mar 18, 2007, Guido Serassio wrote:
> I don't agree because the content is still outdated to 2.5 squid.conf
> syntax and the Kerberos config often is not needed (as in Samba
> documentation).
>
> It could be better to link the official
On Sun, Mar 18, 2007, Guido Serassio wrote:
> I don't agree because the content is still outdated to 2.5 squid.conf
> syntax and the Kerberos config often is not needed (as in Samba
> documentation).
>
> It could be better to link the official Samba HOWTO:
> http://www.samba.org/samba/docs/man/
Hi Adrian,
At 09.13 18/03/2007, Adrian Chadd wrote:
On Sun, Mar 18, 2007, Paul Matthews wrote:
> Glade to hear you have figured out your problem, but just encase anyone
> else trys tog et Squid working with NTLM authentication i've writtern a
> how-to for it on my website.
>
> Squid With NTLM au
On Sun, Mar 18, 2007, Paul Matthews wrote:
> Glade to hear you have figured out your problem, but just encase anyone
> else trys tog et Squid working with NTLM authentication i've writtern a
> how-to for it on my website.
>
> Squid With NTLM authentication
> http://www.opensourcehowto.org/how-to/s
Glade to hear you have figured out your problem, but just encase anyone
else trys tog et Squid working with NTLM authentication i've writtern a
how-to for it on my website.
Squid With NTLM authentication
http://www.opensourcehowto.org/how-to/squid/squid-with-ntlm-authentication.html
>> From: Kin
> From: Kinkie [mailto:[EMAIL PROTECTED]
> Sent: Saturday, March 17, 2007 9:11 AM
> On Sat, 2007-03-17 at 07:56 +0100, Lux wrote:
> > Hi all
> >
> > I'd like Squid to authenticate, possibly transparently with
> ntlm, to a Samba
> > Domain Controller.
> > I found, and used in other cases, plenty of
On Sat, 2007-03-17 at 07:56 +0100, Lux wrote:
> Hi all
>
> I'd like Squid to authenticate, possibly transparently with ntlm, to a Samba
> Domain Controller.
> I found, and used in other cases, plenty of documentation about doing this
> but with a Windows domain, via winbindd and ntlm_auth. But thi
On 02.11.06 14:09, Lic. Noel Alvarez Peron wrote:
> I am a new user with squid. My question is: Can I authenticate users
> with a transparent proxy?
if you mean "intercepting proxy"
(http://en.wikipedia.org/wiki/Proxy_server#Intercepting), you can't - you
only can "authenticate" IP's.
> Can I aut
Lic. Noel Alvarez Peron schrieb:
Hi:
I am a new user with squid. My question is: Can I authenticate users
with a transparent proxy? Can I authenticate only some kind of users or IPs?
a) No, you can't as the browser thinks he ist talking to the original
server - sou you cannot convince him
Hi,
How do you expect the browser to send authentication
information without user intervention? sending
authentication information automatically, contradicts
with authentication concept.
Maybe you look for an authentication mechanism like
web login?
Regards,
--- Rachel <[EMAIL PROTECTED]> w
Hi,
How do you expect the browser to send authentication
information without user intervention? sending
authentication information automatically, contradicts
with authentication concept.
Maybe you look for an authentication mechanism like
web login?
Regards,
--- Rachel <[EMAIL PROTECTED]> w
mån 2006-03-20 klockan 08:00 +0100 skrev Chiabudini, Tino:
> Hallo,
> I have 2 squid-server working in a chain. The first forwards all queries to
> the second.
> The second asks for password authentication.
>
> Most of the time it works very well,
> but sometimes the users have to repeat the auth
> Hallo,
> I have 2 squid-server working in a chain. The first forwards all queries to
> the second.
> The second asks for password authentication.
> Most of the time it works very well,
> but sometimes the users have to repeat the authentication two or three times,
> before the user was authenti
On Mon, 20 Feb 2006, Murray S. Kucherawy wrote:
If there's anyone on this list who maintains the example files or an FAQ, let
me know and I can tell you what I had to do to get it working.
I maintain both the FAQ and squid.conf(.default).
Regards
Henrik
On Thu, 16 Feb 2006, Murray S. Kucherawy wrote:
Another thought: I have some pretty restrictive header_access lines in
there (the "paranoid" set, I believe). Could that be removing one or more
headers that would make the browser do the desired thing here?
Quite possible. You need to allow the
On Fri, 17 Feb 2006, Henrik Nordstrom wrote:
Another thought: I have some pretty restrictive header_access lines in
there (the "paranoid" set, I believe). Could that be removing one or
more headers that would make the browser do the desired thing here?
Quite possible. You need to allow the pr
On Thu, 16 Feb 2006, Murray S. Kucherawy wrote:
Another thought: I have some pretty restrictive header_access lines in there
(the "paranoid" set, I believe). Could that be removing one or more headers
that would make the browser do the desired thing here?
Quite possible. You need to allow th
On Mon, 13 Feb 2006, Henrik Nordstrom wrote:
Any output from "squid -k parse"?
None.
Any other http_access lines before this?
No.
What is it that causes a browser to just display the "Cache access denied"
page instead of prompting for a userid and password? Perhaps detailed
logging will
On Tue, 14 Feb 2006, Mark Elsen wrote:
http://www.squid-cache.org/Doc/FAQ/FAQ-17.html#ss17.16
OK, so then what I'm trying to do should be working. At least I'm on the
right track...
>
>
> Could this problem be based on the fact that I've got my browser
> configured to use squid as a proxy, versus having it operating normally
> and using squid as a transparent proxy?
>
http://www.squid-cache.org/Doc/FAQ/FAQ-17.html#ss17.16
M.
On Mon, 13 Feb 2006, Henrik Nordstrom wrote:
I'm trying to get my head around proxy authentication with 2.5-STABLE7. I
believe I have it right based on what I've read in the FAQ and the sample
configuration, but the browser never asks me for a userid or password and
instead just returns a "Cach
On Mon, 13 Feb 2006, Mark Elsen wrote:
http_access allow password
http_access deny all
Your are not allowing any source addresses , try
http_access allow all password
Won't and can't make any difference.
Squid does not really care what kinds of AC
On Sun, 12 Feb 2006, Murray S. Kucherawy wrote:
I'm trying to get my head around proxy authentication with 2.5-STABLE7. I
believe I have it right based on what I've read in the FAQ and the sample
configuration, but the browser never asks me for a userid or password and
instead just returns a "
On Mon, 13 Feb 2006, Mark Elsen wrote:
Your are not allowing any source addresses , try
http_access allow all password
No improvement. It still just goes to the "Cache access denied" page
without the browser ever prompting for a password.
> I'm trying to get my head around proxy authentication with 2.5-STABLE7. I
> believe I have it right based on what I've read in the FAQ and the sample
> configuration, but the browser never asks me for a userid or password and
> instead just returns a "Cache Access Denied" page.
>
> The relevant l
m_scripts/plaintext_check.sh`
Non-standard, but you could get it to work if you can write shell
scripts..
D.Radel.
- Original Message -
From: "Mark Elsen" <[EMAIL PROTECTED]>
To: "Paolo Biancolli" <[EMAIL PROTECTED]>
Cc:
Sent: Wednesday, January 11,
> Hi all,
>
> Is it possible to authenticate using a flat text file as well as using MS
> Active Directory? We are currently rolling out AD and may need to have 2
> different authentication methods.
>
I presume "as well" means that if the user is not in AD,look it up
in the flat tx file.
It does
> -Original Message-
> From: Sean Ali [mailto:[EMAIL PROTECTED]
> Sent: Friday, December 09, 2005 8:50 PM
> To: squid-users@squid-cache.org
> Subject: [squid-users] squid authentication input via web page
>
>
> Hello,
>
> Is it possible for squid to accept proxy authentication via a
> w
On Monday 14 November 2005 12:29, [EMAIL PROTECTED] wrote:
> I was able to setup squid with basic_ncsa authentication, the only
> problem I'm encountering with basic_ncsa, everytime a user opens a new
> browser the squid always requires a username and password.
That's the way authentication works
On Mon, Jul 18, 2005 at 05:33:50AM +0430, Abbas Salehi wrote:
> Can you advice me how i can configure squid to authenticate without set the
> proxy server ,actully i want transparent proxy with authentication,the
> authentication method is not important,
http://www.squid-cache.org/Doc/FAQ/FAQ-17.h
om: "Neil A. Hillard" <[EMAIL PROTECTED]>
To: "Abbas Salehi" <[EMAIL PROTECTED]>
Cc:
Sent: Tuesday, July 12, 2005 12:21 PM
Subject: Re: [squid-users] Squid authentication with radius server
Hi,
Abbas Salehi wrote:
Can anyone help me
How we can config squid t
Hi,
Abbas Salehi wrote:
Can anyone help me
How we can config squid to authenticate with radius server,
The radius server is out of this server and it's separately Server,what
module should be used for authe program,if you have any guidance or any
external software ,could you please help me,
I
Thanks, that fixed my issue.
-Original Message-
From: Serassio Guido [mailto:[EMAIL PROTECTED]
Sent: Friday, June 10, 2005 11:23 AM
To: Sam Reynolds; squid-users@squid-cache.org
Subject: Spam:::Re: [squid-users] Squid Authentication Failure
Hi,
At 00.45 10/06/2005, Sam Reynolds wrote
Hi,
At 00.45 10/06/2005, Sam Reynolds wrote:
We have just upgraded to the latest release of Squid 3. We have tried
both the Squid Cache version 3.0-PRE3-20050608 and Squid Cache version
3.0-PRE3-20050609 with squid_rad_auth version 1.06 and squid_radius_auth
1.07. Each time we authenticate
On Wed, 25 May 2005 [EMAIL PROTECTED] wrote:
But: Is there a way to use the integrated windows authentication, so that
the user will not be asked for his password each time he tries to brows the
internet?
It should use the login password from windows automatically.
See the Squid FAQ section on
25.05.2005 18:20 cc
Subject
RE: [squid-users] Squid
Stefan,
You might want to take a look at
http://kb.papercutsoftware.com/Main/ConfiguringSquidProxyToAuthenticateWithActiveDirectory.
This document helped me in my setup.
Ken McKinlay, GCIA
Network Security,
Curtiss-Wright Controls, Embedded Computing
[EMAIL PROTECTED]
> -Original Messa
On Mon, 25 Apr 2005, Wennie V. Lagmay wrote:
Im using Fedora core 1 1386 for testing and FC2 64 bit for production.
The Fedora Core RPM of Squid contains ncsa_auth. No need to install it
separately.
/usr/lib/squid/ncsa_auth
Regards
Henrik
Monday, April 25, 2005 3:30 PM
Subject: Re: [squid-users] Squid authentication query
> On Mon, 25 Apr 2005, Wennie V. Lagmay wrote:
>
> > Hi squidrunner,
> >
> > Can you please give me an instruction on how to enable the NCSA without
> > recompiling the the squid. Im
Hi Henrik,
I found it already, now is to install it
- Original Message -
From: "Henrik Nordstrom" <[EMAIL PROTECTED]>
To: "Wennie V. Lagmay" <[EMAIL PROTECTED]>
Cc: "Squid Users"
Sent: Monday, April 25, 2005 3:30 PM
Subject: Re: [squid-users] Squ
Hi Henrik,
Im using Fedora core 1 1386 for testing and FC2 64 bit for production.
- Original Message -
From: "Henrik Nordstrom" <[EMAIL PROTECTED]>
To: "Wennie V. Lagmay" <[EMAIL PROTECTED]>
Cc: "Squid Users"
Sent: Monday, April 25, 200
On Mon, 25 Apr 2005, Wennie V. Lagmay wrote:
Hi squidrunner,
Can you please give me an instruction on how to enable the NCSA without
recompiling the the squid. Im looking for the helpers/basic_auth/NCSA but I
cannot find it either in installation cd of linux directory. Please help...
Which Linux d
: "squidrunner team" <[EMAIL PROTECTED]>
To: "Wennie V. Lagmay" <[EMAIL PROTECTED]>; "squid-users @
squid-cache.org"
Sent: Monday, April 25, 2005 11:40 AM
Subject: Re: [squid-users] Squid authentication query
> > kind of setup I cannot identify the the user
> kind of setup I cannot identify the the user of the
> Ip at specific time
> since we are using DHCP. My question can I use squid
> authentication to
> identify the specific user of the net based on user
> ID? If it's yes Do I
You can handle this with two types of way as,
1> controlling your sin
>
> Hi all,
>
> I know that int squid access log I can extract the source IP,
> destination IP
> or destination page, including time and date. The only
> problem with this
> kind of setup I cannot identify the the user of the Ip at
> specific time
> since we are using DHCP. My question can
On Tue, Mar 22, 2005 at 08:50:58AM +0100, Henrik Nordstrom wrote:
>
> Then they only support Squid-2.5.STABLE4 or earlier. See the release
> notes.
>
Heh... I did tell them I was running stable 7... oh well.
> The reason to this change is to make sure the redirector protocol does not
> break
On Tue, 22 Mar 2005, Brett Lymn wrote:
We have added websense to the mixture, this also works fine and good mostly
except for one small thing - when squid passes the authentication details
to the Websense redirector the '\' character has been encoded as a %5c
yes..
which I can understand but the We
On Sun, 9 Jan 2005, Mike Pascual wrote:
I would like to implement squid authentication on some IP address on
our network.
I would like IPs x.x.x.1 to x.x.x.10 to have squid authentication
before browsing the internet and the rest of the IPs has no
authentication. How can I do this? Is this possibl
I think there is a tutorial on this at squid-cache.org
FAQ´s
Even to allow only authenticated users browse special
sites.
Regards.
--- Mike Pascual <[EMAIL PROTECTED]> escribió:
> I would like to implement squid authentication on
> some IP address on
> our network.
>
> I would like IPs x.x.x.
On Tue, 14 Dec 2004, Rodrigo A B Freire wrote:
[2004/12/14 02:51:40, 1] libsmb/ntlmssp.c:ntlmssp_server_auth(549)
ntlmssp_server_auth: failed to parse NTLMSSP:
[2004/12/14 02:51:41, 1] libsmb/ntlmssp.c:ntlmssp_server_auth(549)
ntlmssp_server_auth: failed to parse NTLMSSP:
[2004/12/14 02:51:44, 1
>
> Hello,
>
> We're using a Squid 2.5-STABLE7
> (./configure --enable-underscores --enable-gnuregex
> --disable-ident-lookups
> --enable-snmp --enable-err-languages="English"
> --with-pthreads --mandir=/usr
> /share/man --enable-storeio=diskd,ufs
> --enable-auth="ntlm,basic" --enabl
If you search the squid-users archive for novell and ldap you will find
lots of information.
Tim Bernhardson
Senior Technical Engineer
Certified Citrix Metaframe Administrator
Certified CyberGuard Administrator
Certified AIX 4.3 System Administrator
Sun-Maid Growers of California
7273 Murray Drive
On Mon, 1 Nov 2004, Glenn Baptista wrote:
I realise that user authentication in squid is done via an external
authentication program (e.g. NCSA module) with the appropriate password file.
Administratively it is preferable to write Authentication ACLs using Groups
rather than User Names. Hence g
Yes you can use multiple files with different users in the with one login
file.
Check out my acl list. http://members.lycos.co.uk/njadmin/
You can even change what they have access to per group.
Jason
> -Original Message-
> From: Glenn Baptista [mailto:[EMAIL PROTECTED]
> Sent: Monday,
On Tue, 28 Sep 2004, Costas Zacharopoulos wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I want to configure squid to print usernames instead of ip addresses in
access.log
I want to use ip_user_check as an external authentication mechanism.
ip_user_check is not an authentication mechanism, on
As described by Abue, you can do that on client end(
tabbed browser), secondly you can use MAC base ACL in
squid, thirdly if you are using a domain model, you
can implement NTLM with smb, for this you have to
compile your sambad, as per squid FAQ, and than use it
with ntlm auth. This will let the a
On Fri, 2004-07-02 at 08:54, Payal Rathod wrote:
> So I am trying squid to authenticate with simple ncsa_auth against a
> htaccess file. But here I have a problem that whenever a user opens
> another window of IE she has to give password and username. Even if she
> saves it she has to press ENTER.
>
> Hello everybody,
> I have configured squid with basic ncsa authentication. In
> our college setup
> we have around 720 users. I wanted to know if I could have
> the same password
> file for authentication for squid as well as log in access.
>
You can , for instance, go further then th
Thanks , i will try this
By the way i am using ldap authentication
--- Prash <[EMAIL PROTECTED]> wrote:
> sure there is.
>
> look at the acl directives where you can
> specifically allow some machines.
> There are other acls as well like srcdomain,
> srcdom_regex etc For eg
>
> acl my_allowed
sure there is.
look at the acl directives where you can specifically allow some machines.
There are other acls as well like srcdomain, srcdom_regex etc For eg
acl my_allowed_networks src 192.168.0.0/24
acl my_auth_networks src 10.0.0.0/24
acl user_passwords proxy_auth REQUIRED
http_access allow
hello,
> I am using squid authentication (i.e having username
> and password) , is it possible to bypass
> authentication on some machines without bypassing the
> proxy server
it depends on what is your auth scheme.
i.e. SMB_AUTH, NTLM, MSNT, or mysql_auth can. (and many other)
NCSA or any local
Yes. Specify your machines in an acl and do a http_access allow before the
authentication.
/Andreas
- Original Message -
From: "s s" <[EMAIL PROTECTED]>
> I am using squid authentication (i.e having username
> and password) , is it possible to bypass
> authentication on some machines wi
OTECTED]
> Subject: Re: [squid-users] Squid authentication to Windows 2000 Active
> Directory
>
> Hi Herman,
> How about Squid_Ldap_Auth? That works fine with Win2K
> ADS I suppose
>
> --- "Herman (ISTD)" <[EMAIL PROTECTED]> wrote:
> > Dear all,
> &
Hi Herman,
How about Squid_Ldap_Auth? That works fine with Win2K
ADS I suppose
--- "Herman (ISTD)" <[EMAIL PROTECTED]> wrote:
> Dear all,
>
> I have one Windows 2000 domain, and I wanted my
> Internet users to use
> authentication when they wanted to connect to
> Internet. My question is
> that p
On Wed, 4 Feb 2004, Silvio Luis wrote:
> auth_param ntlm program /usr/lib/squid/wb_ntlmauth
> auth_param basic program /usr/lib/squid/wb_auth
These helpers are only for Samba-2.2.X.
For Samba-3 you must use the ntlm_auth helper shipped as part of Samba.
See the ntlm_auth documentation for de
On Wed, 4 Feb 2004, Mohammad Meskarian wrote:
> now my authentication pass properly when the squid working as proxy.
> I tried to use authentication when proxy working as reverse proxy and
> in acc mode.
> Again squid advertise for authentication and shows the uname and
> password menu
> but
ECTED]
Sent: Wednesday, February 04, 2004 9:56 AM
To: Mohammad Meskarian
Cc: [EMAIL PROTECTED]
Subject: Re: [squid-users] Squid authentication
On Wed, 4 Feb 2004, Mohammad Meskarian wrote:
> I have below line in squid.conf
>
> auth_param basic program /usr/local/squid/libexec/ncs
On Wed, 4 Feb 2004, Mohammad Meskarian wrote:
> I have below line in squid.conf
>
> auth_param basic program /usr/local/squid/libexec/ncsa_auth
> /temp/copyOfShadow
ncsa_auth as shipped with Squid-2.5 and ealier only understands NCSA style
password files
username:crypt_hashed_password
It
On Thu, 8 Jan 2004, Victor Souza Menezes wrote:
> Henrik,
>
> you asked : Is these in the default "Users" container, or somewhere else?
>
>yes. All the users i created are in the default users conteiner.
>
> you also asked: Is the "Pre-Windows 2000 login" set to something that makes sense
On Mon, 5 Jan 2004, Victor Souza Menezes wrote:
> I'm trying to authenticate squid users against a MS Active directory but i am
> having problems. I've already tried all the statements tha are in the
> squid_ldap_auth manual.
>
> the MS Active directory is under the following domain:
>
> tre-pb.
that, i mean, which changes did you
> have to do ?
>
>
>
>
>
> -- Original Message ---
> From: Dave Augustus <[EMAIL PROTECTED]>
> To: [EMAIL PROTECTED]
> Sent: 05 Jan 2004 13:37:58 -0600
> Subject: Re: [squid-users] squid authenticatio
1 - 100 of 132 matches
Mail list logo