Re: [squid-users] Can't see usernames in logs after enabling NTLM

From: Henrik Nordstrom <hno@dont-contact.us>
Date: Tue, 8 Feb 2005 09:19:20 +0100 (CET)

On Tue, 8 Feb 2005, Oliver Hookins wrote:

> http_access allow AuthGroup
> http_access allow SURFING
> http_access allow allowedsites
> http_access deny all
>
> Will that do it, and grab authentication details for every request?

Yes, but I would not recommend leaving allowedsites world open like this.

acl mynetwork src ......

http_access deny !mynetwork
http_access allow AuthGroup
http_access allow SURFING
http_access allow allowedsites
http_access deny all

or alternatively (effectively the same thing)

http_access allow mynetwork AuthGroup
http_access allow SURFING
http_access allow mynetwork allowedsites
http_access deny all

Regards
Henrik
Received on Tue Feb 08 2005 - 01:19:27 MST

This archive was generated by hypermail pre-2.1.9 : Tue Mar 01 2005 - 12:00:01 MST