On 4/18/24 2:46 PM, Albert Shih wrote:
So what I'm trying to do is to use ACL according to the user who make the ssh connection, I don't want «another» authentication.
About the only thing that comes to mind is RFC 931 (?) ident (might be okay on the same system) or something that matches the process owner. (I'm thinking iptables process owner match extension.)
But my testing seems to show that such port forwarding is done by the ssh daemon owner process not the connecting user.
If it wasn't for your "don't want another authentication" I'd wonder about username and password creds to authenticate to Squid.
-- Grant. . . . unix || die _______________________________________________ squid-users mailing list squid-users@xxxxxxxxxxxxxxxxxxxxx https://lists.squid-cache.org/listinfo/squid-users