ons 2010-02-17 klockan 11:09 +1300 skrev Amos Jeffries: > * authenticate_ttl - how often a user is questioned for their > credentials. To verify that the machine still is the same user. No it's not. The client is always required to provide valid credentials, even if they just did 0.002 seconds ago. This parameter controls the idle timeout for the generic auth username object. For most purposes it's best ignored. Neither authenticate_ttl or scheme specific credentialsttl have any effect on the HTTP protocol interactions with the client. Just interal bookkeeing within squid and the interaction with configured auth helpers. Regards Henrik