[squid-users] question on external_acl_type

From: Norio Korekawa <korekawa-norio@dont-contact.us>
Date: Mon, 31 Jan 2005 14:13:56 +0900 (JST)

Hello,

I have a question on external_acl_type and I hope someone will kindly
give me comments or answers.

Firstly, my squid is Squid Cache: Version 2.5.STABLE1, I'm running
it on Red Hat Linux release 9 (Shrike) and the basic part of my
squid.conf is as follows:

--- my squid.conf ---
auth_param basic program /usr/lib/squid/ncsa_auth /etc/squid/passwd
auth_param basic children 5
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hours

external_acl_type myacltype %LOGIN %SRC %DST %{Referer} %{User-Agent} /usr/lib/squid/myaclhelper.pl
acl myacl external myacltype

acl user_auth_acl proxy_auth REQUIRED
http_access deny !user_auth_acl
http_access deny !myacl
http_access allow all
--- my squid.conf ---

My question is:

It seems that myaclhelper.pl is called by squid, every time new URL
is accessed, but is this correct action? I think it should not be
called, once myacl passes, that is, myaclhelper.pl returns "OK".
In fact, ncsa_auth seems not to be called, once HTTP basic authentication
passes...

I think my squid.conf has some problems, but I don't know what they are...

Any answer would be appreciated.
Thanks in advance.
Norio
Received on Sun Jan 30 2005 - 22:14:09 MST

This archive was generated by hypermail pre-2.1.9 : Mon Mar 07 2005 - 12:59:36 MST