RE: [squid-users] Squid / ident / dansguardian

When Ident turns, normally I should not authenticate myself because I am in the ACL ident. Of course, I put in my navigator the port of dansguardian (8081). If I stopped Ident I must normally authenticate myself. However it is not the case. It's my problem.

I use Dansguardian because it is a good software of filtering of contents of Web pages. It is a good means of safety for the company.

ACL ServiceInfo ident /etc/squid/listeUtilisateurs
ACL authenticate proxy_auth REQUIRED

http_access allow ServiceInfo
http_access allow authenticate
http_access deny all

Then I configured my external authenticator (auth_param basic program msntauth). msntauth functions, I tested it thanks to the order /

/usr/lib/squid/msntauth
Util Password
OK

-----Message d'origine-----
De : Peter Albrecht [mailto:peter.albrecht@novell.com]
Envoyé : mardi 16 mai 2006 14:24
À : REMY Julien
Objet : Re: [squid-users] Squid / ident / dansguardian

Hello,

> I removed the file msntauth.allowusers. Only the users present in the ACL
> UtilAutorises Ident are taken into account.
>
> If I go on Internet, that functions but when I stopped the service Ident, I
> should not authenticate myself. It is always the same problem.

What exactly do you mean: "It is always the same problem"? When you stop
ident, Squid will of course deny access (as you only allow users which can be
identified).

I haven't used DansGuardian so far. Did you try to do the authentication with
Squid alone (not involving DansGuardian at all)? I'd try something like this:

ACL ServiceInfo ident /etc/squid/listeUtilisateurs
ACL authenticate proxy_auth REQUIRED

http_access allow ServiceInfo
http_access allow authenticate
http_access deny all

Then configure your external authenticator (auth_param).

Regards,

Peter

-- 
Peter Albrecht, Novell Training Services, peter.albrecht@novell.com