Ian Barton wrote:
I have set up a Squid proxy on my Linode for use when I am away from
home and need to use a proxy. In order to stop anyone being able to use
it I have set up authorization.
If I use basic authorization it all works correctly. I get prompted to
enter my user name and password and I can start browsing. However, I
want to set up digest authentication, so my password isn't transmitted
in plain text.
When I enable digest authorization, I get prompted to enter my
credentials, which are accepted. The browser then keeps contacting the
site, but nothing is displayed. In my squid logs I see:
1246527762.271 15 217.146.125.41 TCP_DENIED/407 1796 GET
http://thetimes.co.uk/ ian NONE/- text/html
1246527762.894 19 217.146.125.41 TCP_DENIED/407 1796 GET
http://thetimes.co.uk/ ian NONE/- text/html
1246527763.553 21 217.146.125.41 TCP_DENIED/407 1796 GET
http://thetimes.co.uk/ ian NONE/- text/html
Here is the relevant bit of squid.conf:
auth_param digest program /usr/lib/squid/digest_pw_auth -c
/etc/squid/htdigest.squid
auth_param digest children 5
auth_param digest realm "Squid Proxy Server"
auth_param digest nonce_garbage_interval 5 minutes
auth_param digest nonce_max_duration 30 minutes
auth_param digest nonce_max_count 50
acl digest_users proxy_auth REQUIRED
http_access allow digest_users
I am using the version of Squid that comes with Debian Lenny.
There are two that come with Lenny.
"squid -v" or "dpkg --list | grep squid" will say which.
I suspect there is a problem either with the browser support or the
digest helper.
Amos
--
Please be using
Current Stable Squid 2.7.STABLE6 or 3.0.STABLE16
Current Beta Squid 3.1.0.9
