Re: [squid-users] cachemgr.cgi

From: Henrik Nordstrom <[email protected]>
Date: Sat, 3 May 2003 00:54:20 +0200

On Friday 02 May 2003 21.54, Adam wrote:

> cachemgr_passwd yourpassword info adminservers

Sorry, there is no such syntax in squid.conf.. cachemgr_password only
sets the password, not who may access the function.

To limit which web servers cachemgr.cgi may be run from you limit
access to the cache_object protocol in http_access. The default
squid.conf has rules which limits this to localhost only.

Protection on who may run cachemgr.cgi has to be done in the web
server. This can not be done in squid.conf.

If you do not set any cachemgr_passwd then any password is accepted
(including a blank password) and only the actions not marked with a
* in the description of cachemgr_passwd is available.

Regards
Henrik

-- 
Donations welcome if you consider my Free Squid support helpful.
https://www.paypal.com/xclick/business=hno%40squid-cache.org
If you need commercial Squid support or cost effective Squid or
firewall appliances please refer to MARA Systems AB, Sweden
http://www.marasystems.com/, [email protected]
Received on Fri May 02 2003 - 16:53:43 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:16:13 MST