Search squid archive

Re: [Fwd: Re: [squid-users] is really impossible?]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



> >On 30.03 16:01, Jonis Maurin Ceará wrote:
> >>It's really impossible to run squid as transparent proxy (NAT) + 
> >>authentication? :(

> Matus UHLAR - fantomas escreveu:
> >no. it is possible, but not with interception.

> >>Anyone know any other solution?

> >configure clients to use the proxy.

On 31.03 09:31, Jonis Maurin Ceará wrote:
> I can't....it must be easy for end user :(

easy?
1. set up proxy autoconfiguration file and configure DHCP to support it.
   (you can find this info in archives or google)
2. transparently redirect all users not using proxy to a page that tells
   them how to configure a proxy

> any other idea instead of squid ?

It is not possible. I repeat: IT IS NOT POSSIBLE.

No HTTP client will send its proxy authorization to end server, and the
client can not know that you redirected end server to proxy. Senting proxy
authorization data would be security bug. And therefore no browser authors
will code such feature to their browsers, unless you ask any to do it.

-- 
Matus UHLAR - fantomas, uhlar@xxxxxxxxxxx ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
"To Boot or not to Boot, that's the question." [WD1270 Caviar]

[Index of Archives]     [Linux Audio Users]     [Samba]     [Big List of Linux Books]     [Linux USB]     [Yosemite News]

  Powered by Linux