Dave Coventry wrote:
I have just been googling and I read that it is impossible for Squid
to provide for Transparent Proxying and for Authentication.
Would it be possible to replace the
"/usr/local/squid/share/errors/English/ERR_ACCESS_DENIED" page with a
custom one providing for usernames and passwords.
A Perl script might be able to generate a file accessible to the "acl
AuthorisedUser src /var/log/squid/iplistfile" directive.
Is this feasible?
In 2.x its sometimes needed. In 3.x its fully obsolete.
Has anyone done something similar?
Yes. see below.
Or is there an easier solution?
Yes.
Write up your login page as a normal HTML page somewhere.
Use:
deny_info http://<page-uri> <name-of-proxy_auth-acl>
Amos
--
Please use Squid 2.6STABLE17+ or 3.0STABLE1+
There are serious security advisories out on all earlier releases.
