Re: [squid-users] Authentication Hack

From: Dave Coventry <dgcoventry@dont-contact.us>
Date: Tue, 4 Mar 2008 10:20:21 +0200

On Mon, Mar 3, 2008 at 7:24 PM, Michael Graham wrote:
> I think I missed a line out, try:
>
>
> external_acl_type ipauth %SRC /usr/local/squid/libexec/checkip
> acl ipauthACL external ipauth # <-- This creates the ACL
> http_access allow ipauthACL
>
Hi Michael,

Thank you for your patience.

Of course! The acl hadn't been declared! Still, I wasn't really aware
of the external argument for acl :?

However, Squid returns this in my /usr/local/squid/var/logs/cache.log:

2008/03/04 10:07:24| Ready to serve requests.
2008/03/04 10:07:24| WARNING: ipauth #1 (FD 7) exited
2008/03/04 10:07:24| WARNING: ipauth #2 (FD 8) exited
2008/03/04 10:07:24| WARNING: ipauth #3 (FD 9) exited
2008/03/04 10:07:24| Too few ipauth processes are running
FATAL: The ipauth helpers are crashing too rapidly, need help!

My Perl script is pretty simple, it just checks for the existence of a
file with the name of the user's IP. If the file exists, the user has
authenticated, if not he needs to log in.

#!/usr/bin/perl -w

$| = 1;
if (-e '/var/www/apache2-default/cgi-bin/ips/'.$_){print "OK";}
else {print "ERR";}

(I'm assuming that squid places the user's IP onto the STDIN and I
don't have to pass the IP address from the squid.conf file).
Received on Tue Mar 04 2008 - 01:20:31 MST

This archive was generated by hypermail pre-2.1.9 : Tue Apr 01 2008 - 13:00:04 MDT