Re: [squid-users] PAM authentication problem

The PAM configuration quoted by Visolve is for a specific OS only (RedHat
Linux), not by any means a generic PAM configuration for Squid.

It is impossible to quote a generic PAM configuration that works for all as
the details of PAM stack configurations heavily depends on the OS used and
the wanted stack. The best recommendation if you don't know PAM is to look at
any of your already existing services.

Regards
Henrik Nordström

On Saturday 29 December 2001 01.22, Peter Arnold wrote:
> Hi and thanks for the info. I hadn't got around to working it out just
> yet and it seems you saved me a bit of work.
>
> I might just add that for Solaris8 you only need to add the following
> lines (before the "other" option) to the /etc/pam.conf file:
>
> squid auth required /usr/lib/security/$ISA/pam_unix.so.1
> squid account required /usr/lib/security/$ISA/pam_unix.so.1
>
> Cheers
> Peter Arnold
>
> "Visolve.com" wrote:
> > Hello Stefano Borali,
> >
> > As per your previous mail , you've finished configurarion in
> > squid.conf . As Henrik said , you have to configure the "squid" PAM
> > service to connect to your preferred password database source .
> > See /etc/pam.d/ , i.e..
> >
> > Pam Conf :
> >
> > Add this lines in /etc/pam.conf
> >
> > squid auth required /lib/security/pam_unix.so
> > squid account required /lib/security/pam_unix.so
> >
> > Add this lines in /etc/pam.d/squid
> >
> > auth required /lib/security/pam_stack.so service=system-auth
> > auth required /lib/security/pam_nologin.so
> > auth required /lib/security/pam_pwdb.so shadow nullok
> > account required /lib/security/pam_pwdb.so
> > account required /lib/security/pam_stack.so service=system-auth
> > password required /lib/security/pam_stack.so service=system-auth
> > session required /lib/security/pam_stack.so service=system-auth
> >
> > Test whether pam_auth works fine in Command line , as follows,
> >
> > Go to path/pam_auth and give ./pam_auth
> >
> > e.g . [root@polytest bin]# ./pam_auth
> >
> > my-name my-pasword
> > OK
> >
> > Note: If you are authenticating to /etc/shadow , then pam_auth MUST be
> > installed SUID root.
> >
> > Regards,
> > -Kanchana
> > squid@visolve.com
> > www.visolve.com
> >
> > ----- Original Message -----
> > From: "Stefano Borali" <stefano@arcanet.it>
> > To: <squid-users@squid-cache.org>
> > Sent: Friday, December 28, 2001 4:47 AM
> > Subject: Re: [squid-users] PAM authentication problem
> >
> > > What should I need to authenticate users having access to my
> > > squid-cache
> >
> > using PAM and my passwd file ?
> >
> > > I have compiled the squid and pam_auth program.
> > >
> > > what I should do to activate authentication ?
> > >
> > > thanks
> > >
> > > Stefano

-- 
MARA Systems AB, Giving you basic free Squid support
Customized solutions, packaged solutions and priority support
available on request