Re: [squid-users] Non-browser applications using NTLM+Squid?

From: Eliezer Croitoru <>
Date: Fri, 20 Jul 2012 02:12:34 +0300

On 7/19/2012 11:29 PM, Baird, Josh wrote:
> Hi,
> I'm wondering what others are doing about non-browser applications (Anti-virus software that fetches updates, instant messengers over HTTP, etc) that sit behind a Squid proxy that requires NTLM authentication? These applications, in my experience, use Windows' proxy settings to proxy their outbound traffic, but can't speak NTLM, so the application is prevented from proxying any traffic.
> Would a Kerberos integrated Squid be a possible solution to this problem?
> Thanks,
> Josh
very simple.. just allow them all before the authentication acls such as in:

acl updates dstdomain
acl updates1 dst

http_access allow localnet updates
http_access allow localnet updates1
http_access allow localnet ntlm_auth_helper
http_access deny all


Eliezer Croitoru
IT consulting for Nonprofit organizations
eliezer <at>
Received on Thu Jul 19 2012 - 23:12:42 MDT

This archive was generated by hypermail 2.2.0 : Fri Jul 20 2012 - 12:00:01 MDT