Re: [squid-users] squid + pam_auth + ssl

From: Henrik Nordstrom <[email protected]>
Date: 19 Mar 2003 18:41:21 +0100

ons 2003-03-19 klockan 15.06 skrev Roberto Barbieri:

> What i need to do now, is to protect the authentication data , and the
> user's traffic if it's possible.

Not possible when using HTTP.

What you can do to protect the authentication data is to switch to using
Digest HTTP authentication instead of Basic HTTP authentication. This
exchanges the authentication data in a secure manner.

To set up Digest authentication you need to upgrade to Squid-2.5.STABLE2
and use a browser which has support for Digest authentication. The
password file will also be different.

Regards
Henrik

-- 
Henrik Nordstrom <hno@squid-cache.org>
MARA Systems AB, Sweden
Received on Wed Mar 19 2003 - 10:41:35 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:14:09 MST