Hello,
I have a question on external_acl_type and I hope someone will kindly
give me comments or answers.
Firstly, my squid is Squid Cache: Version 2.5.STABLE1, I'm running
it on Red Hat Linux release 9 (Shrike) and the basic part of my
squid.conf is as follows:
--- my squid.conf ---
auth_param basic program /usr/lib/squid/ncsa_auth /etc/squid/passwd
auth_param basic children 5
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hours
external_acl_type myacltype %LOGIN %SRC %DST %{Referer} %{User-Agent} /usr/lib/squid/myaclhelper.pl
acl myacl external myacltype
acl user_auth_acl proxy_auth REQUIRED
http_access deny !user_auth_acl
http_access deny !myacl
http_access allow all
--- my squid.conf ---
My question is:
It seems that myaclhelper.pl is called by squid, every time new URL
is accessed, but is this correct action? I think it should not be
called, once myacl passes, that is, myaclhelper.pl returns "OK".
In fact, ncsa_auth seems not to be called, once HTTP basic authentication
passes...
I think my squid.conf has some problems, but I don't know what they are...
Any answer would be appreciated.
Thanks in advance.
Norio
