Forums
New posts
Articles
Product Reviews
Policies
FAQ
Log in
Register
What's new
Search
Search
Search titles only
By:
New posts
Menu
Log in
Register
Install the app
Install
Forums
Apple Computing Products:
Running Windows on your Mac
Problem running squid ncsa on os x 10.5
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Reply to thread
Message
<blockquote data-quote="ghostpaladin" data-source="post: 1491195" data-attributes="member: 292254"><p>Good afternoon.</p><p>I have the following problem.</p><p></p><p>I have squidman proxy running on a macbook pro and I woud like to add ncsa authentication to users in my LAN. but when I enter and configure the proxy in the explorer it doen't ask for </p><p>authentication.</p><p></p><p>Here's my squidman template's config: </p><p></p><p>[CODE]# ----------------------------------------------------------------------</p><p># WARNING - do not edit this template unless you know what you are doing</p><p># ----------------------------------------------------------------------</p><p></p><p># the parent cache</p><p>cache_peer %PARENTPROXY% parent %PARENTPORT% 7 no-query no-digest no-netdb-exchange default</p><p></p><p></p><p># disk and memory cache settings</p><p>cache_dir ufs %CACHEDIR% %CACHESIZE% 16 256</p><p>maximum_object_size %MAXOBJECTSIZE%</p><p></p><p></p><p># store coredumps in the first cache dir</p><p>coredump_dir %CACHEDIR%</p><p></p><p></p><p># the hostname squid displays in error messages</p><p>visible_hostname %VISIBLEHOSTNAME%</p><p></p><p></p><p># log & process ID file details</p><p>cache_access_log %ACCESSLOG%</p><p>cache_log %CACHELOG%</p><p>cache_store_log %STORELOG%</p><p>pid_filename %PIDFILE%</p><p></p><p></p><p># Squid listening port</p><p>http_port %PORT%</p><p></p><p># Access Control lists</p><p>acl localhost src 127.0.0.1/32</p><p>acl to_localhost dst 127.0.0.0/8 0.0.0.0/32</p><p>acl manager proto cache_object</p><p>acl SSL_ports port 443</p><p>acl Safe_ports port 80 # http</p><p>acl Safe_ports port 21 # ftp</p><p>acl Safe_ports port 443 # https</p><p>acl Safe_ports port 70 # gopher</p><p>acl Safe_ports port 210 # wais</p><p>acl Safe_ports port 1025-65535 # unregistered ports</p><p>acl Safe_ports port 280 # http-mgmt</p><p>acl Safe_ports port 488 # gss-http</p><p>acl Safe_ports port 591 # filemaker</p><p>acl Safe_ports port 777 # multiling http</p><p>acl CONNECT method CONNECT</p><p>%ALLOWEDHOSTS%</p><p>%DIRECTHOSTS%</p><p># acl badsite dstdomain "/Users/Krosa/Library/Preferences/badsite.acl"</p><p># acl special_clients src "/Users/Krosa/Library/Preferences/special_clients_ip.acl"</p><p>acl badsite dstdomain .facebook.com .twitter.com .blogger.com</p><p></p><p># Only allow cachemgr access from localhost</p><p>http_access allow manager localhost</p><p>http_access deny manager</p><p># http_access allow badsite special_clients</p><p>http_access deny badsite</p><p></p><p></p><p># Deny requests to certain unsafe ports</p><p>http_access deny !Safe_ports</p><p></p><p></p><p># Deny CONNECT to other than secure SSL ports</p><p>http_access deny CONNECT !SSL_ports</p><p></p><p></p><p># protect web apps running on the proxy host from external users</p><p>http_access deny to_localhost</p><p></p><p></p><p># rules for client access go here</p><p>http_access allow localhost</p><p>%HTTPACCESSALLOWED%</p><p></p><p></p><p># after allowed hosts, deny all other access to this proxy</p><p># don't list any other access settings below this point</p><p># http_access deny all</p><p></p><p></p><p># specify which hosts have direct access (bypassing the parent proxy)</p><p>%ALWAYSDIRECT%</p><p>always_direct deny all</p><p></p><p></p><p># hierarchy stop list (squid-recommended)</p><p>hierarchy_stoplist cgi-bin ?</p><p></p><p>error_directory /usr/local/squid/share/errors/es</p><p></p><p>auth_param basic realm Welcome to proxy service, please enter your name and password.</p><p></p><p>auth_param basic program /usr/local/squid/libexec/ncsa_auth /usr/local/squid/etc/squid_passwd</p><p></p><p>auth_param basic children 5</p><p>auth_param basic realm Squid proxy-caching web server</p><p>auth_param basic credentialsttl 2 hours</p><p></p><p>#INSERT YOUR OWN RULES(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS</p><p>acl ncsaauth proxy_auth REQUIRED</p><p>http_access allow ncsaauth</p><p></p><p># THE DENY ALL CONTROL IS ADDED BACK</p><p>http_access deny all</p><p></p><p># forwarded_for off</p><p></p><p># acl ip1 myip 10.0.0.1</p><p># tcp_outgoing_address 10.0.0.1 ip1</p><p></p><p></p><p># request_header_access Allow allow all</p><p># request_header_access Authorization allow all</p><p># request_header_access WWW-Authenticate allow all</p><p># request_header_access Proxy-Authorization allow all</p><p># request_header_access Proxy-Authenticate allow all</p><p># request_header_access Cache-Control allow all</p><p># request_header_access Content-Encoding allow all</p><p># request_header_access Content-Length allow all</p><p># request_header_access Content-Type allow all</p><p># request_header_access Date allow all</p><p># request_header_access Expires allow all</p><p># request_header_access Host allow all</p><p># request_header_access If-Modified-Since allow all</p><p># request_header_access Last-Modified allow all</p><p># request_header_access Location allow all</p><p># request_header_access Pragma allow all</p><p># request_header_access Accept allow all</p><p># request_header_access Accept-Charset allow all</p><p># request_header_access Accept-Encoding allow all</p><p># request_header_access Accept-Language allow all</p><p># request_header_access Content-Language allow all</p><p># request_header_access Mime-Version allow all</p><p># request_header_access Retry-After allow all</p><p># request_header_access Title allow all</p><p># request_header_access Connection allow all</p><p># request_header_access Proxy-Connection allow all</p><p># request_header_access User-Agent allow all</p><p># request_header_access Cookie allow all</p><p># request_header_access All deny all</p><p></p><p># dns_nameservers 8.8.8.8 8.8.4.4</p><p></p><p># refresh patterns (squid-recommended)</p><p>refresh_pattern ^ftp: 1440 20% 10080</p><p>refresh_pattern ^gopher: 1440 0% 1440</p><p>refresh_pattern -i (/cgi-bin/|\?) 0 0% 0</p><p>refresh_pattern . 0 20% 4320</p><p></p><p>[/CODE]</p><p></p><p>Do anybody have an idea about why it doesn't ask for user and password? I would be very thankful</p><p></p><p>And here ir my support links as far:</p><p><a href="http://www.cyberciti.biz/tips/linux-unix-squid-proxy-server-authentication.html" target="_blank">Howto: Squid proxy authentication using ncsa_auth helper</a></p><p><a href="http://hehome.blogspot.mx/2011/07/squidmanncsa.html" target="_blank">Crazy House: 【</a></p><p><a href="http://www.jamesstroud.com/jamess-miscellaneous-how-tos/os-x-admin/squid-anonymous-proxy-on-os-x" target="_blank">Squid Anonymous Proxy on OS X — James Stroud's Pages</a></p></blockquote><p></p>
[QUOTE="ghostpaladin, post: 1491195, member: 292254"] Good afternoon. I have the following problem. I have squidman proxy running on a macbook pro and I woud like to add ncsa authentication to users in my LAN. but when I enter and configure the proxy in the explorer it doen't ask for authentication. Here's my squidman template's config: [CODE]# ---------------------------------------------------------------------- # WARNING - do not edit this template unless you know what you are doing # ---------------------------------------------------------------------- # the parent cache cache_peer %PARENTPROXY% parent %PARENTPORT% 7 no-query no-digest no-netdb-exchange default # disk and memory cache settings cache_dir ufs %CACHEDIR% %CACHESIZE% 16 256 maximum_object_size %MAXOBJECTSIZE% # store coredumps in the first cache dir coredump_dir %CACHEDIR% # the hostname squid displays in error messages visible_hostname %VISIBLEHOSTNAME% # log & process ID file details cache_access_log %ACCESSLOG% cache_log %CACHELOG% cache_store_log %STORELOG% pid_filename %PIDFILE% # Squid listening port http_port %PORT% # Access Control lists acl localhost src 127.0.0.1/32 acl to_localhost dst 127.0.0.0/8 0.0.0.0/32 acl manager proto cache_object acl SSL_ports port 443 acl Safe_ports port 80 # http acl Safe_ports port 21 # ftp acl Safe_ports port 443 # https acl Safe_ports port 70 # gopher acl Safe_ports port 210 # wais acl Safe_ports port 1025-65535 # unregistered ports acl Safe_ports port 280 # http-mgmt acl Safe_ports port 488 # gss-http acl Safe_ports port 591 # filemaker acl Safe_ports port 777 # multiling http acl CONNECT method CONNECT %ALLOWEDHOSTS% %DIRECTHOSTS% # acl badsite dstdomain "/Users/Krosa/Library/Preferences/badsite.acl" # acl special_clients src "/Users/Krosa/Library/Preferences/special_clients_ip.acl" acl badsite dstdomain .facebook.com .twitter.com .blogger.com # Only allow cachemgr access from localhost http_access allow manager localhost http_access deny manager # http_access allow badsite special_clients http_access deny badsite # Deny requests to certain unsafe ports http_access deny !Safe_ports # Deny CONNECT to other than secure SSL ports http_access deny CONNECT !SSL_ports # protect web apps running on the proxy host from external users http_access deny to_localhost # rules for client access go here http_access allow localhost %HTTPACCESSALLOWED% # after allowed hosts, deny all other access to this proxy # don't list any other access settings below this point # http_access deny all # specify which hosts have direct access (bypassing the parent proxy) %ALWAYSDIRECT% always_direct deny all # hierarchy stop list (squid-recommended) hierarchy_stoplist cgi-bin ? error_directory /usr/local/squid/share/errors/es auth_param basic realm Welcome to proxy service, please enter your name and password. auth_param basic program /usr/local/squid/libexec/ncsa_auth /usr/local/squid/etc/squid_passwd auth_param basic children 5 auth_param basic realm Squid proxy-caching web server auth_param basic credentialsttl 2 hours #INSERT YOUR OWN RULES(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS acl ncsaauth proxy_auth REQUIRED http_access allow ncsaauth # THE DENY ALL CONTROL IS ADDED BACK http_access deny all # forwarded_for off # acl ip1 myip 10.0.0.1 # tcp_outgoing_address 10.0.0.1 ip1 # request_header_access Allow allow all # request_header_access Authorization allow all # request_header_access WWW-Authenticate allow all # request_header_access Proxy-Authorization allow all # request_header_access Proxy-Authenticate allow all # request_header_access Cache-Control allow all # request_header_access Content-Encoding allow all # request_header_access Content-Length allow all # request_header_access Content-Type allow all # request_header_access Date allow all # request_header_access Expires allow all # request_header_access Host allow all # request_header_access If-Modified-Since allow all # request_header_access Last-Modified allow all # request_header_access Location allow all # request_header_access Pragma allow all # request_header_access Accept allow all # request_header_access Accept-Charset allow all # request_header_access Accept-Encoding allow all # request_header_access Accept-Language allow all # request_header_access Content-Language allow all # request_header_access Mime-Version allow all # request_header_access Retry-After allow all # request_header_access Title allow all # request_header_access Connection allow all # request_header_access Proxy-Connection allow all # request_header_access User-Agent allow all # request_header_access Cookie allow all # request_header_access All deny all # dns_nameservers 8.8.8.8 8.8.4.4 # refresh patterns (squid-recommended) refresh_pattern ^ftp: 1440 20% 10080 refresh_pattern ^gopher: 1440 0% 1440 refresh_pattern -i (/cgi-bin/|\?) 0 0% 0 refresh_pattern . 0 20% 4320 [/CODE] Do anybody have an idea about why it doesn't ask for user and password? I would be very thankful And here ir my support links as far: [url=http://www.cyberciti.biz/tips/linux-unix-squid-proxy-server-authentication.html]Howto: Squid proxy authentication using ncsa_auth helper[/url] [url=http://hehome.blogspot.mx/2011/07/squidmanncsa.html]Crazy House: 【[/url] [url=http://www.jamesstroud.com/jamess-miscellaneous-how-tos/os-x-admin/squid-anonymous-proxy-on-os-x]Squid Anonymous Proxy on OS X — James Stroud's Pages[/url] [/QUOTE]
Verification
Name this item. 🍎
Post reply
Forums
Apple Computing Products:
Running Windows on your Mac
Problem running squid ncsa on os x 10.5
Top
