[squid-users] Logging username at parent cache using ntlm_auth

From: Wilshire, Andrew <[email protected]>
Date: Wed, 24 Sep 2003 11:30:09 +1200

Hi Everyone,

I'm using ntlm_auth to authenticate IE clients on one proxy server, which
then uses a parent cache to retrieve content (which in turn has a parent
cache - a third tier).

Now when I look inside my access.log on the 'first-tier' Cache using
ntlm_auth I see the following

1064382929.715 4847 aaa.bbb.ccc.ddd TCP_MISS/200 10141 GET
http://www.nzherald.co.nz/pics/ACFNAA.Taimy.JPG DOMAIN\UserName
FIRST_PARENT_MISS/iii.jjj.kkk.lll image/jpeg

When I look inside access.log on the PARENT (2nd tier) cache of the
first-tier cache I see

1064290276.165 4844 eee.fff.ggg.hhh TCP_MISS/200 10100 GET
http://www.nzherald.co.nz/pics/ACFNAA.Taimy.JPG -
FIRST_UP_PARENT/3rdtiercache.fqdn.co.nz image/jpeg

What I need to accomplish is to get the domain/username passed through to
the PARENT cache so that I may use a filtering product on our 2nd tier
proxy.

Do I need to recompile Squid on the 2nd tier cache with ntlm_auth support?
Maybe some kind of header rewrite?

I'm pretty stumped... any help would be greatly appreciated : )

Many thanks,
Andrew.

Andrew Wilshire
IBM / Air New Zealand
andrew.wilshire@airnz.co.nz

____________________________________________________________________
CAUTION - This message may contain privileged and confidential
information intended only for the use of the addressee named above.
If you are not the intended recipient of this message you are hereby
notified that any use, dissemination, distribution or reproduction
of this message is prohibited. If you have received this message in
error please notify Air New Zealand immediately. Any views expressed
in this message are those of the individual sender and may not
necessarily reflect the views of Air New Zealand.
_____________________________________________________________________
For more information on the Air New Zealand Group, visit us online
at http://www.airnewzealand.com
_____________________________________________________________________
Received on Tue Sep 23 2003 - 17:30:20 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:20:00 MST