Re: [squid-users] squid_ldap_auth and passwords in clear text

From: Amos Jeffries <squid3_at_treenet.co.nz>
Date: Sat, 15 Nov 2008 14:36:33 +1300

Johnson, S wrote:
> Since this is going to be a "public" network, people will have the
> ability to load wireshark or another sniffer program.

Ah, okay.

>
> I just got the squid_ldap_auth working ok on my segment but when
> watching the protocol analyzer I see that the auth requests against the
> AD are coming in as clear text passwords. Is there anyway we can
> encrypt the ldap domain requests?

digest auth is the best available for password encryption.

Amos

-- 
Please be using
   Current Stable Squid 2.7.STABLE5 or 3.0.STABLE10
   Current Beta Squid 3.1.0.2
Received on Sat Nov 15 2008 - 01:36:37 MST

This archive was generated by hypermail 2.2.0 : Sat Nov 15 2008 - 12:00:02 MST