Re: [squid-users] squid_ldap_auth and passwords in clear text from Henrik Nordstrom on 2008-11-18 (squid-users)

From: Henrik Nordstrom <henrik_at_henriknordstrom.net>
Date: Tue, 18 Nov 2008 09:59:34 +0100

On fre, 2008-11-14 at 10:31 -0600, Johnson, S wrote:

> I just got the squid_ldap_auth working ok on my segment but when
> watching the protocol analyzer I see that the auth requests against the
> AD are coming in as clear text passwords. Is there anyway we can
> encrypt the ldap domain requests?

By AD do you refer to Microsoft AD? In such case use NTLM authentication
instead of LDAP.

You can also TLS encrypt the LDAP communication, but this does not
protect the credentials sent by browsers to Squid, just the
communication squid->LDAP.

Regards
Henrik

application/pgp-signature attachment: This is a digitally signed message part

Received on Tue Nov 18 2008 - 08:59:39 MST

This archive was generated by hypermail 2.2.0 : Thu Nov 27 2008 - 12:00:03 MST