I put this lines in my squid.conf (I have squid 2.5 STABLE 8):
auth_param basic program /usr/local/squid/libexec/ncsa_auth
/usr/local/squid/etc/passwd
acl foo proxy_auth name_of_user
acl all src 0/0
http_access allow foo
http_access deny all
And I also restriced web sites that name_of_user can visit (I omitted it in
the example above).
I have created /usr/local/squid/etc/passwd file using htpasswd from Apache
(password in ecrypted).
Is this secure?
What kind of problems may I have?
From: "Emilio Salgari" <mustyc@xxxxxxxxxxx>
To: squid-users@xxxxxxxxxxxxxxx
Subject: [squid-users] strong authentication method
Date: Thu, 16 Jun 2005 16:33:34 +0000
Hi guys!
I have squid perfectly running on a linux server.
Till now, since this server has only a private IP address I have put no
authentication for my clients (inside lan) using squid.
In the next days I will give a public static IP address to this machine but
I want that only MY clients can access my proxy (my clients will have
public dinamic IP addresses, since they will connect from outside lan).
My clients are on a win2000 or winxp box.
What kind of strong authentication method should I use?
Is there something stronger than simple username-password?
Anyway, what modifications should I make to my squid.conf?
Thanks in advance for any advice!
