|
Squid proxy authentication
I use RedHat9, squid
I have configured squid with authentication option and it works perfectlly. This is my set up: auth_param basic program /usr/lib/squid/ncsa_auth /etc/squid/passwd auth_param basic children 5 auth_param basic realm Squid proxy-caching web server auth_param basic credentialsttl 2 hours ..... acl password proxy_auth REQUIRED http_access allow password .... But now I need to do a new setting. I want squid not to authenticate those users, who go to the specific url (for example www.google.com)? Is it possible? How? Thank you! |
i don't know why u wud like to do it the above way when u can block access to specific sites using software like SquidGuard or DAN's guardian.
I use pam_auth module as the authentication program with LDAP So i have no clue how to reject authentication when a user tries to access banned website anyways even i wud like to know how it can be done the way u want it lol ;) |
The only way I could think of is running multiple instances of Squid. Your first instance listens to requests for websites and filters according to the ACL's you setup. If the URL is not allowed, they are no authenticated and the website fetched. If the URL is allowed, it redirects the request to a second instance of Squid that then handles the authentication and retrieving/caching of the object. The Squid FAQ's detail running multiple instances, though not really aimed at what you're after. Quite why you'd want this, I don't know though.
|
| All times are GMT -5. The time now is 02:56 PM. |