Tomasz Lewicki schrieb: > Hello! > > I'm fighting with Squid and access restrictions for users (my thread about > Squidguard). Now I'm trying to identify users for Squid with ident daemon. I > installed it on my openSUSE 10.2 LTSP server, ran it, but it looks like users > do not "see" identd running.
Tomasz, We habe the same idea but we do not use identd but pam_auth with squid/squidguard. (We use SuseLinux 8.2) You will receive every information about usernames and clients in access.log. If you understand German, then have a look at www.linuxbu.ch Kapitel 13, Abschnitt: "Benutzer authentifizieren" We do it this way: in squid.conf: <squid.conf> # http_access allow all DO NOT! acl domainusers proxy_auth REQUIRED http_access deny !domainusers proxy_auth_realm Internet-Access ... # and: ... auth_param basic program /usr/sbin/pam_auth auth_param basic children 5 #auth_param basic realm Squid proxy-caching web server auth_param basic realm Internet-Zugang auth_param basic credentialsttl 2 hours </squid.conf> The rights of pam_auth have to be like this: -rwxr-sr-x 1 squid shadow /usr/sbin/pam_auth and therefore chown squid:shadow /usr/sbin/pam_auth chmod g+x /usr/sbin/pam_auth et voila With kind regards Gerhard Damerau ------------------------------------------------------------------------- SF.Net email is sponsored by: The Future of Linux Business White Paper from Novell. From the desktop to the data center, Linux is going mainstream. Let it simplify your IT future. http://altfarm.mediaplex.com/ad/ck/8857-50307-18918-4 _____________________________________________________________________ Ltsp-discuss mailing list. To un-subscribe, or change prefs, goto: https://lists.sourceforge.net/lists/listinfo/ltsp-discuss For additional LTSP help, try #ltsp channel on irc.freenode.net
