Dave Coventry wrote:
> I have just been googling and I read that it is impossible for Squid
> to provide for Transparent Proxying and for Authentication.
>
> Would it be possible to replace the
> "/usr/local/squid/share/errors/English/ERR_ACCESS_DENIED" page with a
> custom one providing for usernames and passwords.
>
> A Perl script might be able to generate a file accessible to the "acl
> AuthorisedUser src /var/log/squid/iplistfile" directive.
>
> Is this feasible?
In 2.x its sometimes needed. In 3.x its fully obsolete.
>
> Has anyone done something similar?
Yes. see below.
>
> Or is there an easier solution?
Yes.
Write up your login page as a normal HTML page somewhere.
Use:
deny_info http://<page-uri> <name-of-proxy_auth-acl>
Amos
-- Please use Squid 2.6STABLE17+ or 3.0STABLE1+ There are serious security advisories out on all earlier releases.Received on Sat Mar 01 2008 - 02:49:04 MST
This archive was generated by hypermail pre-2.1.9 : Tue Apr 01 2008 - 13:00:04 MDT