[squid-users] auth question

From: John Holstein <[email protected]>
Date: Wed, 11 Dec 2002 22:33:56 -0500

Hi.

Here's the deal.

I'm trying to get Squid 2.5 to use proxy_auth for the acl.

Here's the setup:

        auth_param basic program /usr/local/libexec/ncsa_auth
/usr/local/apache/auth/htpasswd.sub

        acl password proxy_auth REQUIRED
        http_access allow password

The other acl's/http's that may or may not be relevant:

acl QUERY urlpath_regex cgi-bin \?
acl all src 0/0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl Safe_ports port 80
acl Safe_ports port 21
acl Safe_ports port 443 563
acl Safe_ports port 70
acl Safe_ports port 210
acl Safe_ports port 1025-65535
acl Safe_ports port 280
acl Safe_ports port 488
acl Safe_ports port 591
acl Safe_ports port 777
acl CONNECT method CONNECT
acl magic_words1 url_regex -i 192.168

http_access allow Safe_ports
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow password
http_access deny all

The htpasswd.sub file is the apache users htpasswd file.

ncsa_auth was compiled.

Problem is, when I start squid, go through the proxy, no authentication
prompt, ever. It will allow connections without authentication.

What's the deal?

Will ncsa_auth work with the apache htpasswd file?

Why doesn't it deny access if a password isn't given?

Ideas?

/john
Received on Wed Dec 11 2002 - 20:34:10 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:12:03 MST