On a Windows desktop there are often a bunch of system services that make http connections, either running as a system account or running as a user but that don't know how to authenticate. The list of these exceptions is tedious to maintain so it would be good to be able to authorise the users IP address once they have successfully authenticated to squid, sort of like the old style 'pop before smtp' auth used to work.
If such a solution was scriptable I could also use something like netfilter ipsets to allow access on non-http ports using squid authentication. What hooks exist to allow this sort of thing? Thanks James
