Re: [squid-users] ncsa_auth reject

From: Gareth Evans <garethe@dont-contact.us>
Date: Thu, 23 Sep 2004 15:23:00 +0100

Hi,

I don't want to be pushy but can anyone else help with this problem?

Thanks,

Gareth.
>
> -----Original Message-----
> From: "Gareth Evans" <garethe@minervadental.co.uk>
> To: squid-users@squid-cache.org
> Date: Thu, 23 Sep 2004 09:04:33 +0100
> Subject: Re: Fwd: [squid-users] Re: Fwd: Re: ncsa_auth reject
>
> Squid.conf as follows
>
> http_port 128.0.0.19:8000
> hierarchy_stoplist cgi-bin ?
> acl QUERY urlpath_regex cgi-bin \?
> no_cache deny QUERY
> client_netmask 255.255.0.0
> dns_nameservers 158.152.1.43 158.152.1.58
> hosts_file none
>
> auth_param basic program /usr/local/squid/libexec/ncsa_auth
> /etc/passwd.squid
> auth_param basic children 5
> auth_param basic realm Minerva Dental Squid Proxy
> auth_param basic credentialsttl 2 hours
>
> refresh_pattern ^ftp: 1440 20% 10080
> refresh_pattern ^gopher: 1440 0% 1440
> refresh_pattern . 0 20% 4320
>
> acl password proxy_auth REQUIRED
> acl manager proto cache_object
> acl localhost src 127.0.0.1/255.255.255.255
> acl to_localhost dst 127.0.0.0/8
> acl SSL_ports port 443 563
> acl Safe_ports port 80 # http
> acl Safe_ports port 21 # ftp
> acl Safe_ports port 443 563 # https, snews
> acl Safe_ports port 70 # gopher
> acl Safe_ports port 210 # wais
> acl Safe_ports port 1025-65535 # unregistered ports
> acl Safe_ports port 280 # http-mgmt
> acl Safe_ports port 488 # gss-http
> acl Safe_ports port 591 # filemaker
> acl Safe_ports port 777 # multiling http
> acl CONNECT method CONNECT
> acl all src 0.0.0.0/0.0.0.0
>
> http_access allow manager localhost
> http_access deny !Safe_ports
> http_access deny to_localhost
> http_access allow password
> http_access deny all
>
> http_reply_access allow all
> icp_access allow all
>
> visible_hostname fedoraproxy
> unique_hostname fedoraproxy
>
> coredump_dir /var/spool/squid
>
>
> Cheers,
>
> Gareth
>
>
>
> > -----Original Message-----
> > From: Adam Aube <aaube01@baker.edu>
> > To: squid-users@squid-cache.org
> > Date: Wed, 22 Sep 2004 11:44:42 -0400
> > Subject: [squid-users] Re: Fwd: Re: ncsa_auth reject
> >
> > Gareth Evans wrote:
> > > Adam Aube wrote:
> > >> Gareth Evans wrote:
> >
> > >>> I've setup Squid-2.5.Stable4 using ncsa_auth and created a new
> > password
> > >>> file using htpasswd.
> >
> > >>> When I try to visit any web-sites I get the login box as expected
> > but
> > it
> > >>> doesn't accept my username or password.
> >
> > >>> I've tried echoing my username and password to ncsa_auth from the
> > >>> prompt and it returns an 'OK' or an 'ERR' if I send the wrong
> > details.
> >
> > >> Is the password file readable by the user Squid runs as?
> >
> > > The Squid user has full access to the password file.
> >
> > Post your squid.conf (without comments or blank lines).
> >
> > Adam
> >
>
Received on Thu Sep 23 2004 - 08:22:19 MDT

This archive was generated by hypermail pre-2.1.9 : Fri Oct 01 2004 - 12:00:03 MDT