On Thu, 2 Jun 2005, marcantonio wrote:
2005/06/02 16:08:34| clientSetKeepaliveFlag: method = GET
[2005/06/02 16:08:34, 1] utils/ntlm_auth.c:check_plaintext_auth(286)
Reading winbind reply failed! (0x01)
2005/06/02 16:08:34| The request GET
http://officescan-p.activeupdate.trendmicro.com:80/activeupdate/server.ini is
DENIED, because it matched 'Authenticated'
2005/06/02 16:08:34| Access Denied:
http://officescan-p.activeupdate.trendmicro.com:80/activeupdate/server.ini
2005/06/02 16:08:34| AclMatchedName = Authenticated
2005/06/02 16:08:34| Proxy Auth Message = <null>
<<<
First of all, I find strange that the request is "DENIED because it matched
Authenticated".
Authenticated users, as per the squid.conf file, should be allowed, not
denied.
Is is denied because the authantication was not complete or verified.
But the strangest thing is the "Reading winbind reply failed". Wbinfo works:
This is a Samba error..
In short, it looks like domain authentications is setup correctly, ntlm_auth
works, everything works, BUT squid. I'm sure I am doing something wrong, but
after much research and investigation, I am rather stuck.
What tests did you do to verify ntlm_auth operation?
Try using it in the exact same manner you have specified in squid.conf as
your cache_effective_user.
Regards
Henrik
