Re: [squid-users] squid acl

From: deny1 <deny1@dont-contact.us>
Date: Fri, 04 Jun 2004 13:10:25 +0200

>
>But you do not 'tell' him the program authentication:
>the line with :
>authenticate_program /.../ncsa_auth file_with_users !!
>
>
>
ok i think its a bad think to use webmin with squid
i prefer now to add directly to squid.conf

so i try

#Recommended minimum configuration:
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localdomain src 192.168.0.0/255.255.255.0
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl Safe_ports port 80
acl Safe_ports port 21
acl Safe_ports port 443 563
acl Safe_ports port 70
acl Safe_ports port 210
acl Safe_ports port 1025-65535
acl Safe_ports port 280
acl Safe_ports port 488
acl Safe_ports port 591
acl Safe_ports port 777
acl CONNECT method CONNECT
acl Users proxy_auth REQUIRED

http_access allow manager localdomain
http_access allow localdomain
# Deny requests to unknown ports
http_access deny manager
# Deny CONNECT to other than SSL ports
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports

auth_param basic /usr/lib/squid/ncsa_auth /etc/squid/users

and i get

[root@linux-pour-lesnuls squid]# squid -D
2004/06/04 13:10:00| aclParseAclLine: IGNORING: Proxy Auth ACL 'acl
Users proxy_auth REQUIRED' because no authentication schemes are fully
configured.
2004/06/04 13:10:00| aclParseAclLine: IGNORING invalid ACL: acl Users
proxy_auth REQUIRED
2004/06/04 13:10:00| unrecognised basic auth scheme parameter
'/usr/lib/squid/ncsa_auth'

thanks
Received on Fri Jun 04 2004 - 05:10:13 MDT

This archive was generated by hypermail pre-2.1.9 : Thu Jul 01 2004 - 12:00:02 MDT