On Fri, Jan 21, 2000 at 08:42:10PM +1300, Del wrote:
> > The MS does it through combination of passing around access tokens and
> > caching the password (in hashes). This is done at SMB level. The reason why
> > MS Proxy can work in that way is because it requires you to install the
> > client program on each PC and then use RPC over SMB to access the proxy
> > server. I would rate your chances as being very marginally higher than 0% of
> > ever being able to reproduce such setup directly. You may be able to
> > syncronize a linux server running squid with windows NT and then write a
> > custom authentication module. I am inclined to put in the too hard basket
> > though.
>
> Au contraire. I had it working reasonably well on one site using
> the PAM authentication module for squid, and PAM_SMB.
>
> The user is still prompted for a password when they connect to
> squid, but they use the same user name and password as their NT
> domain account.
Getting squid to use NT for authentication is trivial. Getting it to
do it without prompting for a password (as MS Proxy/IE) does is a different
thing all together.
Netwares BorderManager also does a similar thing. As long as you're logged
into a Netware server from the box you're web browsing from it will let
you browse without a password.
Scott.
--
SLUG - Sydney Linux Users Group Mailing List - http://www.slug.org.au
To unsubscribe send email to [EMAIL PROTECTED] with
unsubscribe in the text
