Re: [squid-users] Allow connect specify https website without ncsa authentication

From: Muthukumar <[email protected]>
Date: Tue, 15 Jun 2004 14:19:02 +0530

[authen section]
auth_param basic program /squid/bin/ncsa_auth /squid/etc/passwd

[acl section]

acl SSL_Ports 443
acl host_allowed src "/squid/etc/host_allowed.txt"
acl passwd proxy_auth REQUIRED
acl special_domain dstdomain "/squid/etc/special_domain.txt"

[http access section]
http_access allow yyyy yyyyyy
.....
http_access allow xxxxx xxxxxxxx
http_access allow host_all passwd

File [special_domain.txt]
             .tac.co.th

File host_allow = all Intranet ip address

The above details configuration file of squid.conf. My
requirements want everyone connect to ssl website namely
https://sonic2.tac.co.th/bp3/bin/Index without a authentication. The
defaut users must authenication using last rule of http_access.

The last rule base that is "http_access allow host_allowed
passwd " means require user name

>>>>>>>>

[Reply]

    I hope your authentication method is working fine. Else check this with command line procedure.

    Change your squid.conf as

    ---- squid.conf ----
    # http_access settings

    .....< other settings without effecting the following settings>....

    # Allow all to access https sites
    http_access allow SSL_Ports

    # Authentication for Intranet ip address with the default usership
    http_access allow host_allowed passwd

    # Deny access by default to end up
    http_access deny all

Regards,
Muthukumar.

---
===============  It is a "Virus Free Mail" ===============
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.705 / Virus Database: 461 - Release Date: 6/12/2004
Received on Tue Jun 15 2004 - 02:48:58 MDT

This archive was generated by hypermail pre-2.1.9 : Thu Jul 01 2004 - 12:00:02 MDT