On Fri, 2002-07-05 at 20:07, Bert Rapp wrote:
> 1) I noticed this statement, " redirect unregistered user to a > registration form" on the squidguard intro page as one of its > capabilities. My understanding is that this means squidguard can force > someone to register on first web acces so that it can log their usage. > Am I correct, if so I haven't been able to find any info on setting > this up... how would I go about it? (Even a little info would be > helpful here, as I could find no reference of this anywhere else.) Not seen any info on this, but this could be extremely useful to me. > 2) From everyone elses experience, what is the best way to identify > users? Via the registration page I just mentioned, or an ident server > on each client, or stricly by IP (not desirable, I would imagine, in a > DHCP environment). Some of my personal thoughts here, I thought a > registration page would be annoying, but I'd rather not have to install > an ident server on everybox, and IPs don't make much sense to managers > (the people wishing to limit / monitor usage). > I went down the IDENT road; fortunately before the workstations images were finalised an IDENT server was thrown in, so it was an issue about installing on every client. There could be many different users on a workstation at different times- we didn't want to have to merge a logon list along with the squid logs to work out exactly who had which IP at which moment in time. We had static IP's, but that could have been more difficult with DHCP. If you set squidguard(or squid) to redirect users who don't have IDENT setup to a ident-information page with setup program and good instructions, and let clients set their own ident up. (If it's not possible to do this within squid/squidguard I run a second redirector along with squidguard that can be adapted to do this). > I'm looking for opinions and best practice recommendations. Any > information will be appreciated. > > Thanks, > Bert > Adam
