On Wed, 12 Mar 2003 10:01 am, [EMAIL PROTECTED] wrote: > G'day all.... > > We use Samba here (2.2.6) and Squid. Due to our high internet usage, I've > had to block access for most people. > > I've been allowing access on an IP basis, however this isn't ideal (we use > dhcp) and I'd like to be able to block/allow access on a user-level basis. > > Now, I understand that this can be done with PAM. Is winbind also > required? > > What documentation exists about this? > > TIA > > Mike > --- > Michael S. E. Kraus > Administration > Capital Holdings Group (NSW) Pty Ltd > p: (02) 9955 8000
I've written a procedure here at work for authenticating users with squid back to a windows 2000 active directory. The doc I wrote assumes a FreeBSD 4.x based squid box, but the compile options and config file stuff is platform independant. Our proxy uses Winbind primarily. This isn't exactly what you're asking for as I understand it. However, if your squid server and samba server share the same box, you can simply use PAM as the "samba" accounts are must have a valid *nix account, so you just authenticate back to the *nix account (via PAM etc). If on the other hand you are authenticating back to a Samba box, my procedure may get you moving in the right direction (or at least get samba and squid compiled with the right options). E-mail me directly (off list) if you'd like a copy of my documentation. --James __________________________ A random quote of nothing: Q: How do you keep a moron in suspense? -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
