Re: About ACL of squid

From: Henrik Nordstrom <hno@dont-contact.us>
Date: Thu, 09 Mar 2000 21:21:43 +0100

I also have a patch to authenticate_ip_ttl which does the job. Once the
user is authenticated, he is locked to that IP address until
authenticate_ip_ttl expires.

The default operation of authenticate_ip_ttl only discourages the users
to lend their password, by requiring the user to reauthenticate each
time Squid detects a change in IP address.

--
Henrik Nordstrom
Squid hacker
http://squid.sourceforge.net/hno/
Duane Wessels wrote:
> 
> On Tue, 7 Mar 2000, Shiu, Tim wrote:
> 
> > Dear Wessels,
> > I need to limit the user who can logon at stationary IP address and must
> > authenticated by proxy server.
> > Now, my users is authenticated by proxy but some of them share their account
> > and password with others. In order to prevent it, I need to limit IP
> > address. But I don't know how to implement it in the squid.conf file.
> > Could you help me to resolve this problem?
> > Thank you very much
> 
> try this
> 
> acl foo1 proxy_auth name1
> acl foo2 src ip1
> http_access allow foo1 foo2
> http_access deny foo2
> 
> Duane W.
Received on Fri Mar 10 2000 - 05:34:17 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:52:02 MST