RE: [squid-users] plugin to secure authentication

Thanks for that, I have installed the helper but am getting stuck on the
configuration side. Could you point me to some documentation which
explains how to configure squid.conf.

I have tried

auth_param digest program /usr/local/squid/libexec/digest_ldap_auth -e
-b "OU=UserAccounts,OU=Users,DC=MY,DC=DOMAIN,DC=AC,DC=ZA" -F "uid=%s" -D
"Cn=User_Name,OU=ServiceAccount,DC=MY,DC=DOMAIN,DC=AC,DC=ZA" -w
"Pass_Word" -h 146.141.x.x -p 636 -v 3 -Z

With the above conf, cache.log give me the following:

 helperOpenServers: Starting 5 'digest_ldap_auth' processes
Usage: digest_pw_auth(LDAP_backend) -b basedn -f filter [options]
ldap_server_name
(with and explanation of all the switches that can be used e.g. -A
password attribute(REQUIRED) etc...)

The messages log shows:

Apr 10 09:22:06 chuck squid[31319]: Squid Parent: child process 31340
started
Apr 10 09:22:06 chuck (squid): The digestauthenticator helpers are
crashing too rapidly, need help!
Apr 10 09:22:06 chuck squid[31319]: Squid Parent: child process 31340
exited due to signal 6

Many thanks
Paolo Biancolli

-----Original Message-----
From: Henrik Nordstrom [mailto:henrik@henriknordstrom.net]
Sent: 06 April 2006 09:20 PM
To: Paolo Biancolli
Cc: squid-users@squid-cache.org
Subject: RE: [squid-users] plugin to secure authentication

tor 2006-04-06 klockan 16:35 +0200 skrev Paolo Biancolli:
> I am not sure what you mean by "LDAP based digest helper in the
> Squid-3 tree", but have have tried digest_pw_auth and that does not
> work. It works fine for plain text files but not for LDAP.

In Squid-3 there is a digest_ldap_auth helper in helpers/digest/ldap/.
This helper works fine with Squid 2.5 as well even if it is only found
in the Squid-3 tree.

Squid-3 is found either from the CVS or as nightly snapshots from the
home page..

The LDAP digest helper can access either plain-text or Digest hashed
passwords from LDAP.

Regards
Henrik
Received on Mon Apr 10 2006 - 01:27:23 MDT