Greetings
working on creating a simple web access cache with authentication. I
want to use my current LDAP directory to get login info.
running squid 3.0 stable 13
so close. clients browser pops up and asks for credentials. The
username and pass are given and the browser prompts again. never
giving access.
access logs tell me nothing,
TCP_DENIED/407 2522 GET http://livepage.apple.com/ joeusername
NONE/- text/html
auth_param basic program /usr/local/squid/libexec/squid_ldap_auth -b
"dc=host,dc=my,dc=domain,dc=com" host.my.domain.com
auth_param basic children 5
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hours
acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8
acl ldapauth proxy_auth REQUIRED
acl localnet src 10.135.0.0/16 # noc
#
#
acl SSL_ports port 443
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
http_access allow ldapauth
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access deny to_localhost
http_access allow localnet
http_access deny all
Received on Wed Apr 22 2009 - 14:31:51 MDT
This archive was generated by hypermail 2.2.0 : Wed Apr 22 2009 - 12:00:02 MDT