Re: [squid-users] ldap_auth

From: Chris Riggins <criggins_at_gmail.com>
Date: Mon, 2 Jun 2008 10:10:49 -0400

     I found that the method below did not work, actually. I still
have not figured out just how Apache's "htdigest" is joining the
several inputs to create the md5 hash, but it isn't
"user:realm:password" | md5sum.

     I finally got digest auth to work by doing the following (the
"-c" creates the passwd file):

# htdigest -c <passwd_file> <realm> <username>

which requested a password. I provided it twice, and it generated the
following line in the file:

<username>:<realm>:md5-hash

     Now that format isn't usable by squid, so take out the <realm> &
one of its colons, leaving
just:

<username>:md5-hash

     That works for squid--I'm posting this via that very proxy--and
the md5-hash does NOT match the hash made from the command:

echo -n "<username>:<realm>:<password>"

I haven't yet figured out just what htdigest is doing, but I hope to
do so shortly. (To reply to the other request: yes, I'll gladly
update the wiki just as soon as I've figured this all out).

     Sorry for the slow reply. I had the weekend off!

Chris

On Sun, Jun 1, 2008 at 6:49 PM, Henrik Nordstrom
<henrik_at_henriknordstrom.net> wrote:
> On s�n, 2008-06-01 at 13:23 -0700, Lawrence Anthony wrote:
>> Can someone point me to how to encode the passwords using the helper?
>
> Here is one:
>
> echo -n "user:realm:password" | md5sum
>
> Using Apache htdigest is another..
>
> Regards
> Henrik
>
Received on Mon Jun 02 2008 - 14:10:59 MDT

This archive was generated by hypermail 2.2.0 : Mon Jun 02 2008 - 12:00:03 MDT