RE: [squid-users] Help please! smb_auth is caching usernames and passwords from Robert Collins on 2001-04-23 (squid-users)

From: Robert Collins <robert.collins@dont-contact.us>
Date: Tue, 24 Apr 2001 14:59:18 +1000

Please keep replies cc'd to the list.

Rebuilding your cache won't affect the squid username cache - it's
memory only.

run the three commands separately instead

Rob

> -----Original Message-----
> From: Donavon Lockett [mailto:support@ocosta.k12.wa.us]
> Sent: Tuesday, April 24, 2001 3:13 PM
> To: Robert Collins
> Subject: RE: [squid-users] Help please! smb_auth is caching usernames
> and passwords
>
>
> I gave that a try but squid couldn't use that line. && sleep
> 30 && squid.
>
> I have also rebuilt the cache several times too.
>
> Just seems strange that it keeps the old password even though
> it shouldn't.
> I also looked in my squid.conf for some timing and the
> default was 3600 I
> believe and mine is set for 180
>
> Any other thoughts?
>
>
>
>
> -----Original Message-----
> From: Robert Collins [mailto:robert.collins@itdomain.com.au]
> Sent: Monday, April 23, 2001 9:36 PM
> To: Donavon Lockett; squid-users@squid-cache.org
> Subject: RE: [squid-users] Help please! smb_auth is caching usernames
> and passwords
>
>
> > -----Original Message-----
> > From: Donavon Lockett [mailto:support@ocosta.k12.wa.us]
> > Sent: Tuesday, April 24, 2001 2:41 PM
> > To: squid-users@squid-cache.org
> > Subject: [squid-users] Help please! smb_auth is caching
> usernames and
> > passwords
> >
> >
> > How do I disable smb_auth or what ever is causing the caching
> > of usernames
> > and passwords?
>
> username caching is builtin to squid. I don't know the exact logic in
> 2.2 (before my time w.r.t. hacking squids guts).
>
> > Squid proxy 2.2stable5 smb_auth 0.5 authenticating from nt4.0 PDC
> > Only members of the internet group on the nt pdc are allowed
> > access to the
> > internet.
> >
> > Problem is when a user is pulled from the group. They can
> > still use their
> > username and password and get access even thought NT says
> > they are not a
> > member of the internet group. This works fine for users who
> > have not had
> > access to the internet group yet.
>
> You problem is that you are not waiting for a timeout on the users.
> There should be a parameter in squid.conf to reduce the lifespan of
> cached username entries, so that they are forced to re-authenticate.
>
> > Any suggestions as to what file to delete or edit to remove
> > these users?
>
> squid -k shutdown && sleep 30 && squid
>
> Rob
>
> > Thank you.
> >
> > Donavon Lockett
> > Ocosta School District
> > Network/Tech Support
> >
> >
>
>
Received on Mon Apr 23 2001 - 23:06:44 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:59:34 MST