Re: squid authentication

From: Henrik Nordstrom <[email protected]>
Date: Fri, 01 Sep 2000 00:23:59 +0200

Sergio Henrique Oliveira Pereira (EDB) wrote:

> your tip is very nice but I need bypass authentication a
> userid and not ip address. Like

Define userid in the scope of TCP/IP networking. Not that easy as there
is no such concept in TCP/IP or unauthenticated HTTP. Both are quite
anonymous with only the IP known.

About your only option is to make use of the ident protocol to pass the
userid to Squid, but this requires a ident service to be installed on
the client computers, and can easily be forged by a knowledgeful person.

Your second option is to make use of NTLM authentication to have IE
users "transparently" authenticate themselves to the proxy by using a
ecrypted form ot their Windows login.

--
Henrik Nordstrom
Squid Hacker
--
To unsubscribe, see http://www.squid-cache.org/mailing-lists.html
Received on Thu Aug 31 2000 - 17:00:31 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:55:08 MST