On Wednesday 10 July 2002 19.32, Joshua A. Fiske wrote:
> However, when the user authenticates to the proxy, their username
> and password are sent in cleartext (thus they are easily
> intercepted). Does squid support using SSL for authentication? I
> realize that squid supports SSL proxying, but that is not what I
> want to do.
Squid-2.5 support using SSL for proxying which is what you are asking
for (requests for https:// sites would then be SSL over SSL), but to
my knowledge there is no browsers supporting the use of SSL to
connect to your proxy.
Squid-2.5 also supports a couple of other authentication methods
- NTLM, Microsoft Proprietary "single-sign-on"
- Digest, the HTTP standard for more secure logins. The password is
never sent on the wire, and what is sent cannot be reused at a later
time without first knowing the password..
However, both methods require support in the browser to be used...
plus new password databases (NTLM can/must connect to Windows
Domain).
Regards
Henrik
Received on Wed Jul 10 2002 - 16:08:50 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:09:13 MST