Hello,
I would like to disable login dialog box which pops up asking for
username and password on firefox.
I use squid 3.1.6 and see this webpage :
http://wiki.squid-cache.org/Features/Authentication.
It's say:
To prevent incorrect login details being re-challenged after sign-on has
failed all you have to do is prevent the login ACL being the last on the
authentication line.
For example, this normal configuration will cause a login re-challenge
until working details are presented:
http_access deny mustLogin
This*all hack*will present a plain access denied page without
challenging for different credentials:
http_access deny mustLogin all
I try this but it didn't work for me.
This is my squid.conf:
#####################
###authentification
#####################
auth_param ntlm program /usr/bin/ntlm_auth
--helper-protocol=squid-2.5-ntlmssp
auth_param ntlm children 10
auth_param ntlm keep_alive on
acl membre_du_domaine proxy_auth REQUIRED
#checkup firefox
acl site_sans_authentification dstdomain .addons.mozilla.org
acl site_sans_authentification dstdomain sb-ssl.google.com
#maj spybot
acl site_sans_authentification dstdomain www.safer-networking.org
acl site_sans_authentification dstdomain .spybotupdates.com
#maj windows
acl site_sans_authentification dstdomain .SLS.Microsoft.com
acl site_sans_authentification dstdomain go.microsoft.com
acl site_sans_authentification dstdomain .windowsupdate.com
acl site_sans_authentification dstdomain .update.microsoft.com
acl site_sans_authentification dstdomain download.microsoft.com
#####################
###reseau
#####################
acl localhost src 127.0.0.1/32
acl reseau_mairie src 172.16.0.0/16
#####################
###requete
#####################
acl script urlpath_regex cgi-bin \? \.cgi \.pl \.php3 \.asp \.php
#####################
###port
#####################
acl port_ssl port 443
acl port_autorise port 80 # http
acl port_autorise port 21 # ftp
acl port_autorise port 443 # https
acl port_autorise port 70 # gopher
acl port_autorise port 210 # wais
acl port_autorise port 1025-65535 # unregistered ports
acl port_autorise port 280 # http-mgmt
acl port_autorise port 488 # gss-http
acl port_autorise port 591 # filemaker
acl port_autorise port 777 # multiling http
#####################
###method
#####################
acl manager proto cache_object
acl CONNECT method CONNECT
######################
###acces list
######################
http_access allow manager localhost
http_access deny manager
http_access deny !port_autorise
http_access deny CONNECT !port_ssl
http_access allow localhost
http_access deny !reseau_mairie
http_access allow site_sans_authentification
http_access deny user_interdit all
http_access deny !membre_du_domaine all
http_access deny all
icp_access allow all
cache deny script
#####################
###log
#####################
access_log /var/log/squid3/access.log squid
#####################
###config
#####################
http_port 8080
icp_port 3130
error_directory /usr/share/squid3/errors/French
hierarchy_stoplist cgi-bin ?
cache_dir ufs /var/spool/squid3 1024 16 256
cache_mem 1024 MB
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
coredump_dir /var/spool/squid3
url_rewrite_program /usr/bin/squidGuard -c /etc/squid/squidGuard.conf
url_rewrite_children 10
Thanks for your help
Guillaume
Received on Fri Nov 30 2012 - 10:00:07 MST
This archive was generated by hypermail 2.2.0 : Fri Nov 30 2012 - 12:00:08 MST