RE: [squid-users] NTLM + not a domain user

From: Tony Melia (DMS) <Tony.Melia@dont-contact.us>
Date: Mon, 4 Aug 2003 17:15:21 +1000

Sounds like you need to change the REQUIRED ACL to exclude the non-domain
members.

-----Original Message-----
From: Vladimir Yakovlev [mailto:vladimir@severnayaverf.ru]
Sent: Monday, 4 August 2003 04:20
To: squid-users@squid-cache.org
Subject: [squid-users] NTLM + not a domain user

  Good day!

  As far as i haven't found an answer to my question in any list or
  faq, i posted it here (please forward me to an older answer if any):

    I have a windows based net and 99% of users
    authenticate using ntlm auth method of squid (squid 2.5STABLE3,
    samba 2.2.8a), but 1% are not domain members and can't
    authenticate. Previosly i used ip addresses for acls and
    everything worked fine, but with ntlm auth i found out that even acls
    like acl user src ip.add.res.s/32 and http_access allow user don't
    work: user receives a window asking him to provide his credits.

    Of course, i understand that this comes, because of ntlm helper
    sending ERR to squid, but my question is how to make user (some of
    them) authenticate but simply providing their ip's, when others
    provide nt usernames :)

    Hope, there's a answer, because i don't think it is a good
    practice for me to rewrite ntlm helper.

  Thanks in advance.

  All the very best,
    Vladimir Yakovlev.

Downs MicroSystems Pty Ltd
145 Margaret Street
Toowoomba Qld 4350
Ph. (07) 4639 3344 Fax (07) 4639 3820

Important Disclaimer and Warning

Downs MicroSystems does not represent or warrant that any attached files are
free from computer viruses or other defects. The attached files are
provided, and may only be used, on the basis that the user assumes all
responsibility for any loss, damage or consequences resulting directly or
indirectly from use of the attached files. The liability of Downs
MicroSystems in any event is limited to either the resupply of the attached
files or the cost of having the attached files resupplied.

NOTE: The views expressed by the individual in this message do not
necessarily reflect those of the organisation.

Downs MicroSystems is committed to protecting the privacy of individuals,
and is bound by the principles of the Commonwealth Privacy Act (1988).
Should you wish to view our Privacy Policy, please visit
www.downsmicro.com.au.

The information contained in this message is confidential and may be legally
privileged. The message is intended solely for the addressee(s). If you are
not the intended recipient, you are hereby notified that any use,
dissemination, or reproduction is strictly prohibited and may be unlawful.
If you are not the intended recipient, please contact the sender by return
e-mail and destroy all copies of the original message.
Received on Mon Aug 04 2003 - 01:15:30 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:18:33 MST