Re: [squid-users] FW: Require Authentication on all Ports except 443

From: Adrian Chadd <adrian@dont-contact.us>
Date: Tue, 23 Jan 2007 07:02:23 +0800

On Mon, Jan 22, 2007, Brian Bepristis wrote:
> Is there a way I can require authentication on all ports except 443 I
> have tried a few different things like this
>
>
> http_access allow AuthorizedUsers !Safe_ports
> http_access allow CONNECT SSL_ports all
> http_access allow SSL_ports all
> http_access allow AuthorizedUsers Safe_ports
> http_access allow AuthorizedUsers !SSL_ports
>
> but it doesn't work it still is asking for authentication any help would
> be much apprechiated

You need to place the allow SSL_ports all rule first. Having an AuthorizedUsers
ACL earlier in the chain requires SQuid to authenticate the user before the ACL
can be matched or missed. Put all the rules that will bypass authentication
before the first rule that calls for authentication.

Adrian
Received on Mon Jan 22 2007 - 15:57:18 MST

This archive was generated by hypermail pre-2.1.9 : Thu Feb 01 2007 - 12:00:01 MST