RE: [SQU] Has anyone managed to have 2 password files in use

Your previous ruleset was broken :]

The line http_access allow allowedsites will allow access to those sites
without any authentication. Your notes as to objectives had every
request needing authentication.

The key for you though, isn't the ruleset order, its having two
proxy_auth acl's, and combining the student one with the time the
students are allowed to access.

Either by
http_access allow students timezone urlacl1
http_access allow students timezone urlacl2
...

or by
http_access deny students !timezone
which is more useful IMO because it allows you to carry on with other
rules without including "students timezone" on every rule.

Rob

> -----Original Message-----
> From: Mark Worsdall [mailto:squid@wizdom.org.uk]
> Sent: Wednesday, 24 January 2001 10:52 AM
> To: squid-users@ircache.net
> Subject: Re: [SQU] Has anyone managed to have 2 password files in use
>
>
> Hi Thanks
>
> OK, will try this one, I have a script that extracts the usrenames and
> passwds to squid.passwd so I guess I can make it create to username
> files at the same time.
>
> You rearranged my ruleset, sure it works?
>
> M.
>
>
> In message <01cb01c08589$2fd49a90$0200a8c0@lifelesswks>,
> Robert Collins
> <robert.collins@itdomain.com.au> writes
> >You don't need two password lists, all you need to do is
> make a new proxy auth
> >acl, and combine that with the access rules:
> >
> >ie squid.passwd has all the users for staff and students.
> >
> >then
> >acl students proxy_auth <list of student usernames, or a
> file reference for a
> >list of student usernames>
> >acl staff proxy_auth <as above for staff>
> >
> >http_access deny deniedsites
> >http_access deny advertimages
> >http_access deny porn
> >http_access deny !students !staff
> >http_access deny students !okTime
> >http_access allow allowedsites
> >http_access allow noporn
> >
> >and if you want staff only sites insert
> >http_access allow staff staffonly before the allow allowedsites line.
> >
> >This config will
> >force all users to authenticate
> >deny access to denied sites for all users,
> >only allow students during okTime
> >
>
> --
> He came from Econet - Oh no, I've run out of underpants :(
> Home:- jaydee@wizdom.org.uk http://www.wizdom.org.uk
> Shadow:- webmaster@shadow.org.uk http://www.shadow.org.uk
> Work:- netman@hinwick.demon.co.uk http://www.hinwick.demon.co.uk
>
> --
> To unsubscribe, see http://www.squid-cache.org/mailing-lists.html
>
>

--
To unsubscribe, see http://www.squid-cache.org/mailing-lists.html