Re: [squid-users] NTLM auth and Squid

From: Henrik Nordstrom <[email protected]>
Date: Wed, 28 Aug 2002 22:34:15 +0200

On Wednesday 28 August 2002 20.20, shihaya@matavnet.hu wrote:

> Without Samba is not possible? I dont like install any unnecessary
> service.

There is a stand-alone helper also, but it is not very stable due to
Microsoft design issues in the SMB protocol used...

The Samba winbind approach is considerably more stable and correctly
done.

Note: You do not need to install the whole Samba service, only the
nmbd and winbindd (or in some cases only the winbindd service, see
the squid-dev archives on why nmbd is sometimes required).

If all you want is to "sniff" the userid:s then you might be able to
use the fake_auth helper. This only triggers the use of NTLM, but
does not really verify the validity. This way you will get the login
name of users logged in, but others can also trivially fake login
names.

Regards
Henrik
Received on Wed Aug 28 2002 - 15:48:54 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:09:52 MST