Squid user authentication problem.
I have Squid user authentication problem.
Whenever I try to access anything from web i need to enter username and password for it i do it but after entering it it again asks for the same thing again and again ( imean username and password) ,
I do not know what is the problem?
What could it be?
My configuration is same as follows
Authenticating Users
Further security can be maintained over your Internet access by firstly authenticating valid users before their access is granted. Squid can be told to check for valid users by looking up their username and password details in a common text file. The password values located inside the valid user list are subject to a hashing function, so they can not be compromised by someone reading the file "over your shoulder" (social engineering).
The password file can be created using the following commands.
[bash]# touch /etc/squid/passwd
[bash]# chown root.squid /etc/squid/passwd
[bash]# chmod 640 /etc/squid/passwd
The username and password pairs located in the "passwd" file could be subject to a brute force attack. Ensure that only root and squid users have access to this file (hence the "chmod").
To add users to the password list, use the htpasswd application, you will then be prompted to enter a password for the username. If you are setting up user access for an organisation, always allow the user to type their own password here, this stops the user blaming an administrator from using their account if problems arise.
[bash]# htpasswd /etc/squid/passwd username
The configuration file now needs to be adjusted so it checks for valid users. Locate the "INTERNAL" access control statement you used eariler, and make the following changes. This set of rules will now only allow users that have been authenticated and are located inside your private network.
acl INTERNAL src 192.168.1.0/24
acl AUTHUSERS proxy_auth REQUIRED
http_access allow INTERNAL AUTHUSERS
The final configuration required is to tell Squid how to handle the authentication. These listings are already in the configuration file and need to be adjusted to suit your requirements.
auth_param basic program /usr/lib/squid/ncsa_auth /etc/squid/passwd
auth_param basic children 5
auth_param basic realm Squid - Home Proxy Server
auth_param basic credentialsttl 2 hours
auth_param basic casesensitive off
Its time to reload Squids configuration and test it; good luck.
[bash]# /etc/init.d/squid reload
Last edited by manalisharmabe; 04-23-2011 at 01:47 PM.
|