Re: [squid-users] acls for 2 cachemgr users groups: info for localnets and info for no-password single user

From: Henrik Nordstrom <hno@dont-contact.us>
Date: Wed, 23 Apr 2003 08:15:13 +0200

On Wednesday 23 April 2003 02.37, Adam wrote:

> Duane has a comment that he'd like to use snmpget but currently a
> number of interesting stats are not available via Squid's SNMP mib.
> Again if that has changed, please let me know.

I do not know of any interesting stats not availabe via the SNMP mib..

> My question is about acl's more than squid-rrd or cachemgr.cgi.
> What I want is for everyone to access the cachemgr.cgi script via a
> password at the "info" level except users (actually programs) from
> "myserver" which should access cachemgr.cgi without a password.

I prefer to use authentication to protect the cachemgr actions rather
than cachemgr_passwd. Gives much more flexibility in what levels of
access is given to whom from where.. In such configuration
cachemgr_passwd is only used to disable the actions that should not
be available at all.

To select different cachemgr actions in the http_access access
controls you can use urlpath_regex.

-- 
Donations welcome if you consider my Free Squid support helpful.
https://www.paypal.com/xclick/business=hno%40squid-cache.org
If you need commercial Squid support or cost effective Squid or
firewall appliances please refer to MARA Systems AB, Sweden
http://www.marasystems.com/, info@marasystems.com
Received on Wed Apr 23 2003 - 00:15:12 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:15:12 MST