RE: [squid-users] reverse proxy with caching and authentication

From: newsgroupie <[email protected]>
Date: Wed, 3 Nov 2004 16:37:31 +1100

There is a manual hack that I have used successfully to get proxy auth
working in accelerator mode.
(BTW I found this fix posted somewhere in this newsgroup long ago so all
credits go to Henrik Nordstrom)

You need to edit the source before compiling as follows:

Edit the src/Makefile file by adding the following at the DEFS line

-DAUTH_ON_ACCELERATION

Then compile in the usual manner. Works fine for me using 2.5 stable3 on
RH7.3 with winbind auth helper but should work for any others I imagine.
Don't know exactly why auth on acceleration is not enabled by default.
I'm guessing it has something to do with possible authentication
conflicts on the http server as you can only have one layer of http
auth.

Hope this helps,

Dave H

 

-----Original Message-----
From: Michiel van Es [mailto:michiele@info.nl]
Sent: Wednesday, 3 November 2004 2:31 AM
To: Elsen Marc
Cc: squid-users@squid-cache.org
Subject: Re: [squid-users] reverse proxy with caching and authentication

Elsen Marc wrote:
>
>
>>Hi,
>>is it possible to use a reverse proxy server with authentication?
>>I've read that you have to recompile this option into Squid.
>>Why isn't it a default option in Squid?
>>I do now want to recompile my squid version when there is a security
>>exploit and rather use the up2date/yum functionallity from
>>WhiteBox/RedHat.
>>I use WhiteBox Enterprise Linux 3.0 , Squid version:
>>squid-2.5.STABLE3-6.3E.1
>>
>
>
> http://www.squid-cache.org/mail-archive/squid-users/200212/0035.html
>
> and/or
>
> http://www.squid-cache.org/mail-archive/squid-users/200304/0003.html
>
> M.

Thanks..
too bad it isn't implemented in the stable rpm version.
Now I have to recompile squid ( I do now want to this every time there
is a security exploit) or use the 3.0 beta

:(

Michiel
Received on Tue Nov 02 2004 - 22:37:41 MST

This archive was generated by hypermail pre-2.1.9 : Wed Dec 01 2004 - 12:00:01 MST