[Gllug] Squid and proxy_auth
Anthony Newman
anthony.newman at uk.clara.net
Wed Sep 28 21:31:38 UTC 2005
Simon Morris wrote:
> Hello,
>
> I have a Squid Server (2.5.6-8) running on Debian and it is setup to
> issue NTLM authentication to clients so it can pull usernames from
> Active Directory using winbind and store the names in the logs as well
> as the IP addresses.
>
> It works well and has been in for a number of months.
>
> Some sites that clients visit require authentication and I think what
> is happening is that Squid is sending out the users AD credentials
> rather than requesting the alternate name and password from the user.
>
> The squid logs for such a session are like this.
>
>
> 152.146.177.200 - - [28/Sep/2005:14:51:41 +0100] "GET
> http://stage.domain.cz/ HTTP/1.0" 407 1815 TCP_DENIED:NONE
> 152.146.177.200 - - [28/Sep/2005:14:51:41 +0100] "GET
> http://stage.domain.cz/ HTTP/1.0" 407 1845 TCP_DENIED:NONE
> 152.146.177.200 - morriss [28/Sep/2005:14:51:41 +0100] "GET
> http://stage.domain.cz/ HTTP/1.0" 401 4326 TCP_MISS:DIRECT
>
407 seems to imply a proxy error, rather than a straightforward
authorization failure; is this error in response to a failed
authentication from the browser to a remote site or does the
authentication prompt at the user's end fail to materialise and result
in an immediate error?
Ant
--
Gllug mailing list - Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug
More information about the GLLUG
mailing list