Ubuntu Servers :: SQUID Authentication Via Website Or Other Program?
Jan 29, 2010
I would like to configure Squid and DansGuardian that way, that it's a Proxy with Authentication via Website. That means: A new Notebook gets about DHCP the Network-Information like IP-Adress etc.. When he now tries to open a Internet connection it should check if he's authenticated and if not he should get (if this try is from a browser) a login screen in http. It should also not be possible to have internetconnection without being logged in. The clients are Windoze, Mac and Linux. My question now. What programms/deamons are there for doing this authentication. Would you decide for another Programm instead of Squid?
View 2 Replies
ADVERTISEMENT
May 27, 2011
I have a network and am using squid proxy with authentication I want to create another subnet without authentication.
View 1 Replies
View Related
Dec 7, 2010
what is the acl type is used to bypass a website where to implement the rule?
View 3 Replies
View Related
Mar 14, 2011
On Ubuntu server 10.10, with a relay smtp server with authentication via postfix; I keep getting 535: Incorrect authentication data. I'm sure my username and password is correct. Heres how I set up postfix: I created a file called smarthosts.conf in my /etc/postfix/ directory that contains the following:
[Code].....
my server uses plain text authentication on port 25. I would like to use security like SSL, but this particular server is unsecured.
View 9 Replies
View Related
Apr 28, 2011
I am using squid 2.6 (as a proxy server) in my cent os 5 box.The clients computers are factehing the web pages successfully. The firewall (IPTABLES) are already disabled.The problem is we have an internal web based application by which the users add the data in it. when the user type the ip address in the browser i.e http://10.1.7.21:81/mis squid shows Code:ERRORThe requested URL could not be retrievedWhile trying to retrieve the URL: http://10.1.7.21:81/mis/The following error was encountered:Access Denied.Access control configuration prevents your request from being allowed at this time. Please contact your service provider if you feel this is incorrect.Your cache administrator is root.We have another proxy server MS ISA 2006 and by changing proxy from Linux squid to MS ISA we can access the page.
View 14 Replies
View Related
Aug 4, 2010
i am using squid proxy server to block some websites in my organization.now i was doing one testing that is, when i blocked Google. gmail automatically gets block.is there any method by which i could block google but gmail access is
View 1 Replies
View Related
Feb 1, 2010
My company is using Squid Proxy 2.6 for internet connection. Recently we implement a Webmail system. This is the link [URL] can access it using computer directly connect to internet but those using Squid Proxy are unable to Login although the login screen appear. Is this cause by the squid.conf setting or something else?
View 1 Replies
View Related
Jan 3, 2011
i've been trying to configure authentication for a particular tool on a website i've been building
i've tried php http authorization and .htaccess/.htpasswd files, neither seem to work
Code:
<?php
if (!isset($_SERVER['PHP_AUTH_TYPE'])) {
header('WWW-Authenticate: Basic realm="My Realma"');
header('HTTP/1.0 401 Unauthorized');
[Code]....
View 14 Replies
View Related
Oct 25, 2010
I have squid proxy authenticating Internet users with LDAP. It's working well. But I have problem when I authenticate to squid proxy to login to Yahoo Messenger. Each time, I login to YM application, the squid proxy popups many authentication windows. These confuse users when they you YM. I checked in squid access log and see that: when users use YM application, the application requests the following links:
[code]...
With each link, squid requires one authentication window. Do you have any ways to squid require only one authentication window when users use YM?
View 2 Replies
View Related
Jan 15, 2010
i have a working squid ncsa authentication. i have this in my squid.conf
Code:
acl password proxy_auth REQUIRED
acl employees src 192.168.0.2
acl admin src 192.168.1.2
[code]....
this setup makes squid authenticate both the employees and admin network. how can i make squid just authenticate only the employees network? admin network should connect to squid without authentication.
View 3 Replies
View Related
Mar 30, 2010
If users are a memebr of a certain AD group, they are granted access to the web. I have this working but there is a glitch. I have to restart squid everytime I add or remove a user from the active directory group for the change to kick in. I could set up cron to restart squid every x amount of minutes but that is no good. see settings
auth_param ntlm program /usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp
auth_param ntlm children 30
auth_param ntlm max_challenge_reuses 0
auth_param ntlm max_challenge_lifetime 2 minutes
[code]...
Any work arounds for this. I need to able to add an AD user to an AD group so they can have instant access to the web without me having to restart squid
View 1 Replies
View Related
Feb 28, 2009
I'm try to start certificate authentication from my web site..
vhosts.conf for httpd:
<IfModule mod_ssl.c>
<VirtualHost 127.0.0.1:443>
ServerName ca.asu
[Code].....
View 1 Replies
View Related
Jul 12, 2010
I am trying to install squid with active directory authentication following the steps from http://wiki.squid-cache.org/ConfigEx...ctiveDirectory
I am getting a couple of errors how to rectify them the linux os i am using is centos 5.4 and windows 2008 ADS.
I was successfully able to join to the domain
View 1 Replies
View Related
Mar 3, 2010
I have a squid server set up with two ports:
http_port 3128 transparent
http_port 3129
Port 3128 is set up for transparent proxying (ie, if you send a request to the internet, iptables forwards it to 3128) Port 3129 is just a regular port. If you connect to 3129 directly, you get prompted for a password:
Code:
auth_param basic program /usr/lib/squid3/ncsa_auth /etc/squid/squid.passwd
auth_param basic children 2
auth_param basic realm Squid proxy-caching server
acl password proxy_auth admin
http_access allow password
And this is actually working also. If someone signs then they are able to access unrestricted browsing (with squidguard). However, if they don't, they are transparent-proxied and have restricted browsing. The problem is I keep getting /var/squid/cache.log hits:
Code:
2010/03/03 17:11:04| ACHChecklist::authenticated: authentication not applicable on transparently intercepted requests. Basically evertime there's a transparent request, it throws a warning.
View 2 Replies
View Related
Jan 27, 2011
how can I change the text in the Squid Proxy Authentication Dialog Box...? I would like to change the text "The proxy localhost:3128 is requesting a username and password. The site says: "Squid Proxy Caching Server". Is there a file or a configuration to change the text?
View 4 Replies
View Related
Dec 30, 2010
I'm using squid 2.6, Win2008 AD server. Clients are using winxp, win7. how to config squid for the authentication with win2008 AD?
View 2 Replies
View Related
Nov 11, 2010
I have a squid server currently running with basic authentication. This is a must because we constantly have different people using different machines but the rules must be set per user, not per machine.
We also have a lot of users coming and going. So every time a new user comes to the office I have to manually create a user for him so he can authenticate.
Anyway.. We do not have any windows servers so no Active Directory. But I need some solution to pass the windows login to Squid.
First question: It seems I am using NTLM currently for samba as the person can map their home directories on their windows box withuot authenticating. Why can I not use it for squid?
Second question: Can I make my Centos server into an AD server?
View 1 Replies
View Related
Feb 2, 2011
I want to restrict some site (Social Networking) through my newly configured squid proxy. But It always allow those site How to block those site. My squid.conf file is configured as follow :-
#Recommended minimum configuration:
acl all src all
acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8 0.0.0.0/32
[coder].....
View 14 Replies
View Related
May 29, 2010
Im having problem in configuring squid server and applying ncsa authentication
Here is my configuration in squid.cong file
View 6 Replies
View Related
Oct 5, 2010
I've got this current configuration : 1 squid server authenticating with 1 forest abc.com, then another company wants to joint but in different forest efg.com, I've already configured trust relationshipt between them.
How should I configured at squid.conf so it will authenticate both domain ?
At squid.conf I've already configured like the following below for abc.com :
Is it enough to adding a new line for auth_param basic program for efg.com ?
View 1 Replies
View Related
Jan 28, 2010
I'm fairly new to Linux and very new to Squid and am having authentication issues! I am using Oracle Enterprise Linux (which is basically Red Hat without the branding) and wanting to use Squid Proxy Server for web access with authentication to Active Directory. I've found a number of articles about this online and all of them say to use auth program squid_ldap_conf which should be in /usr/lib/squid/. I don't have a squid directory in /usr/lib for starters and my squid binaries are in /etc/squid but there is no squid_ldap_conf in there either. I have installed the latest version of Squid (3.0) to see if that helped but I still cannot find the authorisation program.
View 3 Replies
View Related
Oct 5, 2010
I would like to be able to get squid or dansguardian to authenticate a user account against active directory so that a users browsing activities can be logged.
I can find lots a very useful info on how to set up ntlm_auth etc, but all of these methods produce a pop up window when the user launches the browser.
I'm posting this thread because I would like to be able to authenicate, but without a pop up window. Is there a way of automatically carrying out this authentication so that the user is unaware of it.
We've previously attempted authenticating against an NT4 PDC, but the users worked out that they could use any user account on the network, not just the user that was logged in which kinda defeated the whole idea of logging the users activity.
My current setup is:
Windows 2003 AD
Windows XP Clients, soon to be converted to windows 7.
Fedora 11 running squid and dansguardian.
View 2 Replies
View Related
Jan 28, 2010
There is a new website running tv program It work just great a quickly on Windows but for some reason it is not working on My Ubuntu / firefox. Can any one confirm if it is working on your box or why it is not working and what can I do to get it to work? [URL] I do not like to use the windows so I sure would like to get this working
View 4 Replies
View Related
Apr 16, 2011
Can I get someone that is using Ubuntu/Lucid and Firefox as browser to run a test for me? Can you go to this website and then type the either the word "HIGH" or the word "LOW" in the search box and then tell me if you get the same bunch of program error codings that I get when I try this ? Want to see if this is a problem with just my computer setup or with the websites programming. [URL].
View 2 Replies
View Related
Aug 4, 2010
I got an HP mini 1120NR as a gift and it runs Linux software. I am not sure which version, but I think its Edubuntu and I do not know how to actually open and install a downloaded program file from the web. A specific example is Adobe flash player. It goes into a list and asks me to open it with Archvie Manager, but after that I am lost.
View 14 Replies
View Related
Oct 13, 2009
I want to update Bleachbit from the program website, latest version. But get the following ( The name org.freedesktop.PackageKit was not provided by any .service files ) this is good from a security standpoint. But this decision, I would personally take.
View 14 Replies
View Related
Sep 13, 2009
Does Fedora 11 gnome have that gksu graphical authentication program which allows a normal user to open tools such as that NTFS Configuration Tool to enable full ntfs write support ? I did try to find it with both yum in a terminal, and the package manager, but is not found.
View 11 Replies
View Related
Aug 9, 2010
how come when I tried to install k3b on Fedora 13 32 bit it wont authenticate properly?
View 1 Replies
View Related
Jan 8, 2011
I am using squid + dansguardian for web and content filtering. And it is working fine. I am forcing users to use proxy through browser configuration. Now I am planning to add another layer to controlling access using ncsa_auth program. I know it is not the most secured but I am fine with it. Plain passwords are fine with me.
I will be giving users some default passwords but I want some program for allowing users to change the passwords for the respective users if they want. Is there any perl script or something web based for the purpose that anyone is using or know of?
View 3 Replies
View Related
Feb 12, 2010
I am running ubuntu server in a virtual environment (vmware) and have setup apache and got mediawiki up and running which I can access on host machine by going to 172.16.170.130. But this is only available on my host machine and not elsewhere on the network. How do I make it available to others on LAN and eventually on the internet (associated with my host IP address?)
View 3 Replies
View Related
