I am setup the header replacement:
header_access Other deny all
header_replace X-GoogApps-Allowed-Domains mydomain
but i dont know how to test this parameters. ¿does it look ok? or the
correct configuration is:
header_access X-GoogApps-Allowed-Domains deny all
header_replace X-GoogApps-Allowed-Domains mydomain
Im a newbie in ssl interception, i dont configure any rule. My setup
is (not ssl-bump configured):
configure options: '--build=x86_64-redhat-linux-gnu'
'--host=x86_64-redhat-linux-gnu' '--target=x86_64-redhat-linux-gnu'
'--program-prefix=' '--prefix=/usr' '--exec-prefix=/usr'
'--bindir=/usr/bin' '--sbindir=/usr/sbin' '--sysconfdir=/etc'
'--includedir=/usr/include' '--libdir=/usr/lib64'
'--libexecdir=/usr/libexec' '--sharedstatedir=/usr/com'
'--mandir=/usr/share/man' '--infodir=/usr/share/info'
'--exec_prefix=/usr' '--bindir=/usr/sbin'
'--libexecdir=/usr/lib64/squid' '--localstatedir=/var'
'--datadir=/usr/share' '--sysconfdir=/etc/squid' '--enable-arp-acl'
'--enable-epoll' '--enable-snmp' '--enable-removal-policies=heap,lru'
'--enable-storeio=aufs,coss,diskd,null,ufs' '--enable-ssl'
'--with-openssl=/usr/kerberos' '--enable-delay-pools'
'--enable-linux-netfilter' '--with-pthreads'
'--enable-ntlm-auth-helpers=SMB,fakeauth'
'--enable-external-acl-helpers=ip_user,ldap_group,unix_group,wbinfo_group'
'--enable-auth=basic,digest,ntlm,negotiate'
'--enable-negotiate-auth-helpers=squid_kerb_auth'
'--enable-digest-auth-helpers=password'
'--with-winbind-auth-challenge' '--enable-useragent-log'
'--enable-referer-log' '--disable-dependency-tracking'
'--enable-cachemgr-hostname=localhost' '--enable-underscores'
'--enable-basic-auth-helpers=LDAP,MSNT,NCSA,PAM,SMB,YP,getpwnam,multi-domain-NTLM,SASL'
'--enable-cache-digests' '--enable-ident-lookups'
'--enable-follow-x-forwarded-for' '--enable-wccpv2'
'--enable-fd-config' '--with-maxfd=16384'
'build_alias=x86_64-redhat-linux-gnu'
'host_alias=x86_64-redhat-linux-gnu'
'target_alias=x86_64-redhat-linux-gnu' 'CFLAGS=-D_FORTIFY_SOURCE=2
-fPIE -Os -g -pipe -fsigned-char' 'LDFLAGS=-pie'
Un saludo
Raul Caballero Girol
Departamento de Sistemas
Doctor Zamenhof, 22. 28027 Madrid
Este correo electrónico y los documentos que, en su caso, lo
acompañan, puede contener información reservada y/o confidencial
dirigida exclusivamente al uso del destinatario. Si Ud. no es el
destinatario, le rogamos que nos lo notifique inmediatamente, por esta
misma vía o por teléfono (902.50.6000), no estando autorizado para su
exhibición, copia ni distribución a otras personas o entidades. Si ha
recibido este correo electrónico por error, le rogamos que lo destruya
o elimine de su sistema.
2012/4/17 Eliezer Croitoru <eliezer_at_ngtech.co.il>:
> On 17/04/2012 11:57, Raul Caballero Girol wrote:
>>
>> Hello everybody,
>>
>> I need to implement this procedure:
>>
>> http://support.google.com/a/bin/answer.py?hl=en&answer=1668854
>>
>> Is possible with squid?. I have tried a lot of posibilities but it doesn't
>> work
>>
>> Raul Caballero Girol
>
>
> What is your setup?
> have you tried to use "ssl-bump"? because it's a requirement for this to
> work.
>
> what did you tried to do on squid until now?
> post the squid.conf
>
> Regards,
> Eliezer
>
> --
> Eliezer Croitoru
> https://www1.ngtech.co.il
> IT consulting for Nonprofit organizations
> eliezer <at> ngtech.co.il
Received on Tue Apr 17 2012 - 10:22:59 MDT
This archive was generated by hypermail 2.2.0 : Tue Apr 17 2012 - 12:00:03 MDT