My customer wants to protect his Outlook Web Access server from malicious attacks by introducing a Squid reverse proxy server between the Internet and the OWA server. The attacks automatically try OWA username/password combinations that lockout the accounts after three tries but then he has to manually reset about 100 accounts.
The idea is to use squid (2.4 and 2.5) auth_on_acceleration. Unfortunately it doesn't work, the browser not being able to handle both the squid and the OWA authorization schemes, I suppose. At any rate the squid username/password popup doesn't appear for the OWA origin server although it does for others. Interestingly, squid configured as a proxy-cache and with a browser (MSIE6) set up for it, both authentication schemes work - Squid and the OWA. Is there a way around this to accomplish what he wants to do? -- Jim Flowers<[EMAIL PROTECTED]>
