Re: [SQU] Bypass squid authentication

From: Robert Collins <robert.collins@dont-contact.us>
Date: Thu, 11 Jan 2001 00:50:22 +1100

Is the squid ip 128.1.2.240?
If so - you are testing from the squid machine, the ip source address will be 127.0.0.1 , not the 128.1.2.240

Rob
----- Original Message -----
From: "Onzin Geneuzel" <lsuykerbuyk@hotmail.com>
To: <squid-users@ircache.net>
Sent: Thursday, January 11, 2001 12:05 AM
Subject: [SQU] Bypass squid authentication

> Can anyone help me with the following:
>
> I have a squid configuration file with allows 'vips' to bypass the user
> authentication. To make this work I placed the acl for vips on top and made
> the http_access for vips the first one in the list. However it still asks
> the specific host for a username and password.. What am I doing wrong?!
>
> Conf. file:
>
> http_port 80
>
> cache_mem 10 mb
> cache_effective_user squid
> cache_effective_group nogroup
>
> authenticate_program /var/spool/squid/smb_auth -W MARK
>
> acl all src 0.0.0.0/0.0.0.0
>
> acl vips src 128.1.2.240
> acl manager proto cache_object
> acl localhost src 127.0.0.1/255.255.255.255
> acl users proxy_auth REQUIRED
> acl SSL_ports port 443 563
> acl Safe_ports port 81 80 21 443 563 70 210 1025-65535
> acl CONNECT method CONNECT
>
> acl argo dstdomain .mark.nl
> always_direct allow mark
>
> http_access allow vips
> http_access allow users
> http_access allow manager localhost
> http_access deny manager
> http_access deny !Safe_ports
> http_access deny CONNECT !SSL_ports
> http_access deny all
> #http_access allow all
> icp_access allow all
> miss_access allow all
>
>
> _________________________________________________________________________
> Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com.
>
> --
> To unsubscribe, see http://www.squid-cache.org/mailing-lists.html
>
>

--
To unsubscribe, see http://www.squid-cache.org/mailing-lists.html
Received on Wed Jan 10 2001 - 06:42:43 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:57:24 MST