Niti Lohwithee wrote: > Now, I use the squid 2.5 stable1 . My requirements want > everyone connect to ssl website namely > https://sonic2.tac.co.th/bp3/bin/Index without a authentication. The > default users must authenication using last rule of http_access. The > below details configuration file of squid.conf
> [authen section] > auth_param basic program /squid/bin/ncsa_auth /squid/etc/passwd > > [acl section] > acl SSL_Ports 443 > acl host_allowed src "/squid/etc/host_allowed.txt" > acl passwd proxy_auth REQUIRED > acl special_domain dstdomain "/squid/etc/special_domain.txt" The SSL_Ports acl is missing its type specification. It should be: acl SSL_Ports port 443 > [http access section] > http_access allow SSL_Ports special_domain > http_access allow host_allow passwd > > File [special_domain.txt] > .tac.co.th > File [host_allow.txt ] = all Intranet ip address > > For this config, the squid still popup the user name and > password for authentication. > Is there something else I need to configure to allow for this to work? Fix the SSL_Ports acl line. If it still doesn't work, post your entire squid.conf (without blank lines or comments). Adam
