Re: [squid-users] Password encryption between browser and proxy

From: Christoph Haas <[email protected]>
Date: Fri, 6 Oct 2006 20:25:42 +0200

On Friday 06 October 2006 18:05, Alejandro wrote:
> Dear all, I use a user/password basic authentication system in order to
> validate users to use Internet through the Squid. I know the client
> browser sends the password to the Squid in a Base-64 encoding way, so my
> question is:
>
> Can the client browser send the password in an ENCRYPTED manner to the
> Squid and not using Base-64 encoding ??? How can I do this ??

You can use digest authentication. Squid comes with a "digest_pw_auth"
binary that you can use as an authenticator. See also the
README.auth_module.digest_pw_auth

I hope that one day the browsers will be able to use an SSL connection to
the proxy. Let's start a petition. :)

 Christoph
Received on Fri Oct 06 2006 - 12:25:54 MDT

This archive was generated by hypermail pre-2.1.9 : Wed Nov 01 2006 - 12:00:04 MST