Re: [SQU] AUTH_PAM + RedHat 6.2

From: Ayland <[email protected]>
Date: Tue, 19 Sep 2000 22:02:01 +0600

Oki...
I didn`t get it work for shadow passwd. (I don`t know why.. may be I had
mistake in config).
Next you should make file
/etc/pam.d/squid with strings

auth required /lib/security/pam_pwdb.so shadow nullok
account required /lib/security/pam_pwdb.so
...
Next you should set suit on /usr/local/squid/bin/pam_auth
It is because Squid running as nobody .. But when you get pam authentication
in Linux system pam should have root permission....(chmod 7755
/usr/local/squid/bin/pam_auth )
chek out as root..
#/usr/local/squid/bin/pam_auth
root yourpasswd
OK
Chek next by login into system as user and get authetication for another
user..
$/usr/local/squid/bin/pam_auth
user1 passwd1
OK
user2 passwd2
OK
You should get OK in any case ....

~Al.
: Hi Ayland,
:
: ok ... I've succesfully compiled the pam_auth module and copied to
: /usr/lib/squid/bin
: Then I followed the install instructions and created an /etc/pam.conf
: I've modified the squid.conf.
:
: >-------------------------------------<
:
: authenticate_program /usr/lib/squid/bin/pam_auth
: authenticate_children 5
:
: acl localnet src 172.16.200.0/24
: acl passwd proxy_auth REQUIRED
:
: http_access allow localnet passwd
:
: >-------------------------------------<
:
: But I can't login. I saw in the log file that the authentication process
: runs under the squid uid.
:
: best regards,
:
: christian
:
: Ayland schrieb:
:
: > Yeap ...
: > There just two troubles,,,,
: > What exactly you already make ????
: > ~Al..
: > ----- Original Message -----
: > From: "Christian Wiese" <christian.wiese@4ix.net>
: > To: <squid-users@ircache.net>
: > Sent: Tuesday, September 19, 2000 11:12 PM
: > Subject: [SQU] AUTH_PAM + RedHat 6.2
: >
: > : Hi all,
: > :
: > : I've problems to install the auth_pam module on a RedHat 6.2 server.
: > : Does anybody have installed the squid pam authentication succesfully ?
: > :
: > : Greetings
: > :
: > : Christian
: > :
: > :
: > :
: > : --
: > : To unsubscribe, see http://www.squid-cache.org/mailing-lists.html
: > :
: > :
:
:

--
To unsubscribe, see http://www.squid-cache.org/mailing-lists.html
Received on Tue Sep 19 2000 - 09:59:20 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:55:23 MST