Re: [squid-users] accelerator mode

From: Henrik Nordstrom <hno@dont-contact.us>
Date: Wed, 2 Jul 2003 20:52:45 +0200

On Wednesday 02 July 2003 09.10, mail@hanspans.dyndns.org wrote:
> Hi,
>
> I try to configure squid2.5stable3 in accelerator mode, but I have
> some problems.
>
> 1.
> I try to authenticate users with pam_auth again radius server with
> RSA Token. It seems that the pam module safe passwords from the
> user. The first authentication doesnt work, but if you try it again
> with the same user and token code it works.

Not sure about how PAM-Radius works, but you may want to try telling
the Squid PAM helper to use "One shot" mode.

> 2.
> The second problem is the SSL encryption:
>
> CLIENT -> SSL -> SQUID -> other SSL -> WEBSERVER
>
> I get always the massage Reason: You're speaking plain HTTP to an
> SSL-enabled server port. Instead use the HTTPS scheme to access
> this URL, please. Have anyone a sample config for this construct.

You cannot do this with Squid-2.5.

The feature to (re)encrypt forwarded requests will be available in
Squid-3.0 (already in the development versions), and is also
available as a patch to Squid-2.5 (see
http://devel.squid-cache.org/).

Regards
Henrik

-- 
Donations welcome if you consider my Free Squid support helpful.
https://www.paypal.com/xclick/business=hno%40squid-cache.org
If you need commercial Squid support or cost effective Squid or
firewall appliances please refer to MARA Systems AB, Sweden
http://www.marasystems.com/, info@marasystems.com
Received on Wed Jul 02 2003 - 12:52:53 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:17:48 MST