RE: [squid-users] strong authentication method

From: Emilio Salgari <mustyc@dont-contact.us>
Date: Fri, 17 Jun 2005 15:19:51 +0000

I put this lines in my squid.conf (I have squid 2.5 STABLE 8):

auth_param basic program /usr/local/squid/libexec/ncsa_auth
/usr/local/squid/etc/passwd

acl foo proxy_auth name_of_user
acl all src 0/0
http_access allow foo
http_access deny all

And I also restriced web sites that name_of_user can visit (I omitted it in
the example above).

I have created /usr/local/squid/etc/passwd file using htpasswd from Apache
(password in ecrypted).

Is this secure?
What kind of problems may I have?

>From: "Emilio Salgari" <mustyc@hotmail.com>
>To: squid-users@squid-cache.org
>Subject: [squid-users] strong authentication method
>Date: Thu, 16 Jun 2005 16:33:34 +0000
>
>Hi guys!
>I have squid perfectly running on a linux server.
>Till now, since this server has only a private IP address I have put no
>authentication for my clients (inside lan) using squid.
>In the next days I will give a public static IP address to this machine but
>I want that only MY clients can access my proxy (my clients will have
>public dinamic IP addresses, since they will connect from outside lan).
>My clients are on a win2000 or winxp box.
>
>What kind of strong authentication method should I use?
>Is there something stronger than simple username-password?
>
>Anyway, what modifications should I make to my squid.conf?
>
>Thanks in advance for any advice!
>
>
Received on Fri Jun 17 2005 - 09:20:00 MDT

This archive was generated by hypermail pre-2.1.9 : Fri Jul 01 2005 - 12:00:02 MDT