[squid-users] NTLM Accepting/Denying

From: Timothy Findlay <tfindlay@dont-contact.us>
Date: Thu, 06 Jun 2002 01:18:35 +1000

Hi dudes,

I've finally upgraded to 2.5Pre7, and decided to have another go at
getting the NTLM Auth. So far so good, I complied with:
--enable-auth=ntlm
--enable-ntlm-auth-helpers=NTLMSSP
--prefix=/usr/local/squid-user

In my squid.conf I have:
auth_param ntlm program /usr/local/squid-user/bin/ntlm_auth ATG/ATGTTOWN1
auth_param ntlm children 5
auth_param ntlm max_challenge_reuses 0
auth_param ntlm max_challenge_lifetime 2 minutes

acl password proxy_auth REQUIRED
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8

http_access allow password
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports

It seems to work, but in the access.log file I seem to get lines like:
1023282899.018 1 128.1.6.52 TCP_DENIED/407 1310 GET
http://www.cdrom.com/ - NONE/- text/html
1023282899.027 5 128.1.6.52 TCP_DENIED/407 1376 GET
http://www.cdrom.com/ - NONE/- text/html
1023282899.032 4 128.1.6.52 TCP_DENIED/403 1012 GET
http://www.cdrom.com/ atg\administrator NONE/- text/html

.... you see, it seems to allways deny the request twice, then allow it,
seems to happen regardless of website or user, I suspect I've got a
funky blocking rule somewhere, but I really dont know, any thoughts ??

For reporting stuff, I really just want the last line, the URL & authed
user...

The ntlm_auth thing appears to work cool from the command line too...

Tim.
Received on Wed Jun 05 2002 - 09:10:07 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:08:27 MST