RE: [squid-users] SMB_auth

Essentially the same as you:

authenticate_program /usr/local/squid/bin/smb_auth -W village -U {IP
Address}
acl domainusers proxy_auth REQUIRED
http_access allow domainusers

Assuming that smb_auth is working correctly stand alone then I would
assume it's something else in your squid config that's causing it to fail.
Try going back to the original squid.conf and add only the authentication
lines. If that works then add your changes back to squid.conf one by one
and test after each change.

-Mike

On Mon, 14 May 2001, Jarosek Radim wrote:

> Wow, it's my keying mistake in mail :)
>
> There is list of my squid.conf :
>
> http_port 3128
> hierarchy_stoplist cgi-bin ?
> acl QUERY urlpath_regex cgi-bin \?
> no_cache deny QUERY
> cache_dir ufs /usr/local/squid/cache 100 16 256
> cache_access_log /usr/local/squid/logs/access.log
> cache_log /usr/local/squid/logs/cache.log
> cache_store_log /usr/local/squid/logs/store.log
> debug_options ALL,1
> authenticate_program /usr/bin/smb_auth -W domain
> acl domainusers proxy-auth REQUIRED
> http_access allow domainusers
> acl all src 0.0.0.0/0.0.0.0
> acl manager proto cache_object
> acl localhost src 127.0.0.1/255.255.255.255
> acl SSL_ports port 443 563
> acl Safe_ports port 80 # http
> acl Safe_ports port 21 # ftp
> acl Safe_ports port 443 563 # https, snews
> acl Safe_ports port 70 # gopher
> acl Safe_ports port 210 # wais
> acl Safe_ports port 1025-65535 # unregistered ports
> acl Safe_ports port 280 # http-mgmt
> acl Safe_ports port 488 # gss-http
> acl Safe_ports port 591 # filemaker
> acl Safe_ports port 777 # multiling http
> acl CONNECT method CONNECT
> http_access allow all
> http_access allow manager localhost
> http_access deny manager
> http_access deny !Safe_ports
> http_access deny CONNECT !SSL_ports
> http_access deny all
> http_reply_access allow all
> icp_access allow all
> cache_effective_user squid
> coredump_dir /usr/local/squid/cache
>
> There is list after start squid :
>
> 2001/05/14 06:10:06| Starting Squid Cache version 2.2.STABLE5 for
> i686-pc-linux-gnu...
> 2001/05/14 06:10:06| Process ID 14837
> 2001/05/14 06:10:06| With 1024 file descriptors available
> 2001/05/14 06:10:06| helperOpenServers: Starting 5 'dnsserver' processes
> 2001/05/14 06:10:06| Unlinkd pipe opened on FD 13
> 2001/05/14 06:10:06| Swap maxSize 102400 KB, estimated 17066 objects
> 2001/05/14 06:10:06| Target number of buckets: 341
> 2001/05/14 06:10:06| Using 8192 Store buckets, replacement runs every 10
> seconds
> 2001/05/14 06:10:06| Max Mem size: 8192 KB
> 2001/05/14 06:10:06| Max Swap size: 102400 KB
> 2001/05/14 06:10:06| Rebuilding storage in Cache Dir #0 (DIRTY)
> 2001/05/14 06:10:06| Set Current Directory to /var/squid/cache
> 2001/05/14 06:10:06| Loaded Icons.
> 2001/05/14 06:10:06| Accepting HTTP connections on port 3128, FD 35.
> 2001/05/14 06:10:06| Accepting ICP messages on port 3130, FD 36.
> 2001/05/14 06:10:06| Accepting HTCP messages on port 0, FD 37.
> 2001/05/14 06:10:06| Ready to serve requests.
> 2001/05/14 06:10:06| storeRebuildFromDirectory: DIR #0 done!
> 2001/05/14 06:10:06| Finished rebuilding storage disk.
> 2001/05/14 06:10:06| 0 Entries read from previous logfile.
> 2001/05/14 06:10:06| 0 Entries scanned from swap files.
> 2001/05/14 06:10:06| 0 Invalid entries.
> 2001/05/14 06:10:06| 0 With invalid flags.
> 2001/05/14 06:10:06| 0 Objects loaded.
> 2001/05/14 06:10:06| 0 Objects expired.
> 2001/05/14 06:10:06| 0 Objects cancelled.
> 2001/05/14 06:10:06| 0 Duplicate URLs purged.
> 2001/05/14 06:10:06| 0 Swapfile clashes avoided.
> 2001/05/14 06:10:06| Took 0 seconds ( 0.0 objects/sec).
> 2001/05/14 06:10:06| Beginning Validation Procedure
> 2001/05/14 06:10:07| Completed Validation Procedure
> 2001/05/14 06:10:07| Validated 0 Entries
> 2001/05/14 06:10:07| store_swap_size = 21k
> 2001/05/14 06:10:07| storeLateRelease: released 0 objects
>
> -----------------------------------------------
>
> Can you write me how did you configure squid for smb_auth ? I mean configure
> --prefix=/usr/local/squid ......
>
> Thanks
>
> Radim
>
>
> -----Original Message-----
> From: Mike Diggins [mailto:diggins@mcmail.cis.mcmaster.ca]
> Sent: Friday, May 11, 2001 2:58 PM
> To: Jarosek Radim
> Cc: squid-users@squid-cache.org
> Subject: Re: [squid-users] SMB_auth
>
>
>
> On Fri, 11 May 2001, Jarosek Radim wrote:
>
> > 1.
> > I installed smb_auth a tested it.
> > >smb_auth -W domain -d
> > >user passwd
> > >ok
> >
> > 2.
> > I add these lines to the squid conf:
> > authenticate_program /usr/local/bind/smb_auth -W domain
> > acl domainusers proxy_auth REQUIRED
> > http_access allow domainusers
>
> Those same lines work for me but are you sure the binary is in
> /usr/local/bind? That seems like a funny place to put it.
>
> -Mike
>
>
Received on Mon May 14 2001 - 07:02:59 MDT