[LinuxVadaPav] Re:SQUID PROBLEM

Sun, 26 Oct 2008 21:00:31 -0700 

Dear mubeen as far as i can understand.. 

the above question is regarding using authentication in transparent
proxy.. which is not possible in any ways....

>From official squid docs:

    Authentication cannot be used in a transparently intercepting
proxy as the client then thinks it is talking to an origin server and
not the proxy. This is a limitation of bending the TCP/IP protocol to
transparently intercepting port 80, not a limitation in Squid.

yet there are some companies and softwares which claims they provide
authentication on transparent proxy, but as far my knowledge they are
buildup softwares authenticating users in mysql and redirecting the
traffic using iptables. these softwares are used by small ISPs and
some examples are bluecoat and x-band and a lot...

correct me if i am wrong and do everyone share knowledge about all
this......

--- In [email protected], mubeen nakade
<[EMAIL PROTECTED]> wrote:
>
> 
> 
> --- On Wed, 22/10/08, Ravi <[EMAIL PROTECTED]> wrote:
> 
> From: Ravi <[EMAIL PROTECTED]>
> Subject: [LinuxVadaPav] SQUID PROBLEM
> To: [email protected]
> Date: Wednesday, 22 October, 2008, 11:02 PM
> 
> 
> 
> 
> 
> 
> Is there any way to authenticate client users with proxy
> server(ncsa, ntlm,pam, ldap etc) and the proxy been in the transparent
> mode. I created a transparent proxy but then the auth_param function
> doesnt works and the clients machine gets connected without
> authentication.
> 
> Help needed.
> 
>  
> Hi, 
>   
> First check if ncsa available in squid by following:- 
>   
> # rpm -ql squid | grep ncsa_auth 
> output must come: /usr/lib/squid/ncsa_auth 
>    
> Follow the below steps and reply about it:- 
>   
> User based Authentication you need to use ncsa_auth just follow the
step 
> which i am writing below it will work:- 
> 
> #touch /etc/squid/squid_passwd
> #chmod o+r /etc/squid/squid_passwd
> #htpasswd /etc/squid/squid_passwd mubeen
> New password:
> Re-type new password:
> Adding password for user mubeen
> 
> 
>  Add this to the auth_param section of squid.conf
> 
> auth_param basic program /usr/lib/squid/ncsa_auth
/etc/squid/squid_passwd
> 
> 
>  Add this to the bottom of the ACL section of squid.conf
> 
> acl ncsa_users proxy_auth REQUIRED
> 
> 
>  Add this at the top of the http_access section of squid.conf
> 
> http_access allow ncsa_users 
>  
> 
> Restart squid:
> # /etc/init.d/squid restart
>  
>  
>  
> Rgds,
> Mubeen Nakade.
> 
>  
> 
> 
> 
> 
> 
> 
> 
> 
> 
> 
> 
> 
> 
> 
>       Connect with friends all over the world. Get Yahoo! India
Messenger at http://in.messenger.yahoo.com/?wm=n/
> 
> [Non-text portions of this message have been removed]
>

Reply via email to