Hello All,
Q1: is it working in transparency mode?
Q2: How can I use two (or more) "proxyauth" file? My purpose is use of time
limitations for some authenticated users. (I don't want to use IP addresses)
Thanks...
Adnan
-----Özgün İleti-----
Kimden: Jonathan C. Detert [mailto:detertj@msoe.edu]
Tarih: 26 Kasym 2002 Saly 23:03
Kime: squid-users@squid-cache.org
Konu: [squid-users] problem using smb authentication
Hello Squid Users,
I'm trying to configure squid-2.5.STABLE1 to use SMB to authenticate, but I
cannot get it to work. When I start squid, it does not recognize my
'authenticate_program', and it complains about any proxy_auth acl:
# sbin/squid -N -f etc/squid.conf
2002/11/26 14:52:46| parseConfigFile: line 28 unrecognized:
'authenticate_program /usr/local/squid/libexec/smb_auth -W MSOE -U
155.92.194.33 '
2002/11/26 14:52:46| aclParseAclLine: IGNORING: Proxy Auth ACL 'acl
notmsoe proxy_auth REQUIRED src 0.0.0.0/0.0.0.0' because no
authentication schemes are fully configured.
2002/11/26 14:52:46| aclParseAclLine: IGNORING invalid ACL: acl notmsoe
proxy_auth REQUIRED src 0.0.0.0/0.0.0.0
2002/11/26 14:52:46| squid.conf line 69: http_access deny notmsoe
2002/11/26 14:52:46| aclParseAccessLine: ACL name 'notmsoe' not found.
2002/11/26 14:52:46| squid.conf line 69: http_access deny notmsoe
2002/11/26 14:52:46| aclParseAccessLine: Access line contains no ACL's,
skipping
Any ideas what is wrong?
I configured squid with this command:
./configure --enable-underscores --disable-ident-lookups --enable-auth=basic
--enable-basic-auth-helpers=SMB
my squid.conf looks like this:
------------------------------
http_port 192.168.1.13:80
cache_dir ufs /var/spool/squid/ 10000 16 256
#Who receives email about the system.
cache_mgr root
#Tells squid where to put the log files
cache_log /dev/null
cache_store_log none
cache_access_log /var/log/squid/access.log
log_fqdn off
#Use a user name and password authentication method.
authenticate_program /usr/local/squid/libexec/smb_auth -W MSOE -U
192.168.1.33
acl QUERY urlpath_regex cgi-bin \? msoe.edu 192.168. cfm php cgi pl shtml
phtml asp jsp
no_cache deny QUERY
acl all src 0.0.0.0/0.0.0.0
acl msoe src 192.168.0.0/255.255.0.0
#acl notmsoe src 0.0.0.0/0.0.0.0
acl notmsoe proxy_auth REQUIRED src 0.0.0.0/0.0.0.0
always_direct allow msoe
#squid will swith to this user and group after it starts.
#it neds to be root to start so it can bind the ports.
cache_effective_user proxy
cache_effective_group proxy
#This keeps squid from rewriting the host header.
redirect_rewrites_host_header off
#This is used to make squid act as an accelerator for all addresses
httpd_accel_host virtual
httpd_accel_port 80
httpd_accel_with_proxy on
httpd_accel_uses_host_header on
http_access allow msoe
http_access allow notmsoe
# compensate for ie exploders < 5.5 sp1
ie_refresh on
------------------------------
Thanks for your help
-- Happy Landings, Jon Detert Unix System Administrator, Milwaukee School of Engineering 1025 N. Broadway, Milwaukee, Wisconsin 53202Received on Wed Nov 27 2002 - 16:30:28 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:11:37 MST