hi. sorry for this one, i am not a c coder. is it large amount of work to develop a patch that edits the authenticating parts of squid, so that the helper that does the authentication (prints "OK" or "ERR") will receive not only a line like "user password\n" but "user password requested_url\n"? i guess at that point of time squid does not care about url's, because the user first has to prove himself being a valid one. but otherwise (hopefully) it possibly could be easy to append just that string taken out of the http-header. on top of that, would there be any benefit to have one more configuration option in squid.conf, that tells squid what and in which order to send to the helper? my intention is to have squid not tell the user what is going on in the background. all acl stuff tells the user access denied because of blabla or something similar. in some cases i would prefer the user simply to not being able to log in. (hope i figured out what i want clearly.) thanks for your ideas. sebastian - b .