I'm thinking of using wwwoffle as part of an application firewall in
our network. Our server will run linux kernel 2.4 and redirect all
internet-destined port 80 traffic to port 8080. The logging will allow
us to check what's being browsed (not my decision, management) and
authentication will ensure that only authorised staff have access to
the Internet. Problem: passwords. I have a slight problem with
passwords being stored in the clear on the server, but I can live with
that.
Are there any problems to introduce digest authentication or SSL for
the authentication stage? Consider this a big feature request :-) I
love the rest of wwwoffle, but it would be great if each user could
have a single password for all systems. Similarly, PAM would be
great.
Aside from the feature request, does anyone have any comments on the
suggested setup?
Thanks,
Tom
