Hi all,

I have a squid server with basic ncsa (not ntlm) auth working nicely.

I've installed dansguardian (stable 2.8.0.6), and need basic user authentication.

I need to use basic auth (user prompted for name/pwd), and not ntlm. We have common pc's shared by many different people everyday (think of a library setting). Each pc log's in locally as user windows pwd windows. The pc is locked down. They can get to a few apps. If they try to surf the web, they should be prompted for a username/pwd, for both control AND tracking purposes (dont want transparant proxy).

In squid, i'm using basic auth, and it works great. I need dansguardian to either work with squid auth, or provide it's own.

Has anyone done this in dg stable version? I've been reading the new beta 2.9x is *supposed* to have better auth, but the howto is written in turkish DOH!

I've been searching everywhere, and read tons of stuff, but most material is now old, and I'd like to know if anyone ever found a solution for this.

Thanks for reading,

Daryl

OMG I finally figured it out! Yes, it works!

edit: squid.conf
comment out the localhost access
#http_access allow localhost

You see, dansguardian runs on the local host, so when squid sees the connection coming from dg, its actually coming from the local host (and not a network pc), hence squid allows it without bothering to ask for authentication.

If you force the localhost to authenticate as well, then squid will ask dg, and dg will pass the auth request to your users browser.

I've searched hundreds of threads, and nobody ever mentioned this.

I sure hope this message helps somebody else!