Quote:
Originally Posted by OlRoy
Say you're in a Windows environment and your users already authenticate to the DC, what are the benefits to authenticating to a proxy like Squid?
I've heard that malware that needs to go through the proxy would fail because it wouldn't know that password. How exactly does that work? Do you have to authenticate every time you use your web browser?
|
The are many reasons that you could/would want to use proxy authentication.
1. Make sure that all users are tracked. If the _have_ to authenticate to the proxy then they will surely be accounted for and logged.
2. Stop random users from just connecting to the network and using it as a open proxy.
3. create different access policies based on windows user groups.
There are a few different ways to setup proxy authentication. The best way for windows would prob. be transparent user auth.
When you set the proxy in IE or FireFox and go to a web site it will pass that information to the proxy. The proxy is configured for auth. so it will then send a request to the PC and ask for its domain user credentials. Once it does that it will then go and proxy the site for you.
Malware is a whole different issue. Malware will Phone-Home on random ports not 80 or 443.
If this is for a house thats fine but if it is for a company and you want more information on commerical proxies let me know and i can provide lots of information. I just finished R&D on the top 8 rated commerical web proxies.