Re: [squid-users] Re: Squid authentication ttl

From: Wei Keong <chooweikeong@dont-contact.us>
Date: Wed, 5 Jun 2002 01:09:44 +0800

> The intention when strict mode is turned off is that
>
> user A browses
> user B logs in
> if user A tries to continue to browse he will be requested to log in again
if
> requests have been seen from user B
> same thing for user B.
>
> Meaning that if there is two concurrent users using the same login then
both
> should need to log mostly all the time, to make it really annoying to
share
> the password to another user.

if user A's browser caches the username & password, when user B tries to
login and Squid requests for authentication
- user A will not be prompted (browser takes care of authentication), he is
able to continue to surf as usual
- user B will be prompted repeatedly and will not be able to login

in other words, as long as authenticate_ip_ttl is turn on and has not
expired
[authenticate_ip_ttl_strict on]
- user B will not be prompted and will not be able to login
[authenticate_ip_ttl_strict off]
- user B will be prompted repeatedly and will not be able to login

Rgds,
Wei Keong
Received on Tue Jun 04 2002 - 11:00:30 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:08:26 MST