This solution only works when there is a one-to-one
mapping between users and ip addresses but imagine
circumstances where all users have same ip addresses(
e.g. terminal server users).
The definite solution to this problem is
"cookie-based authentication" which is implemented by
some commercial products like bluecoat ProxySG
(http://www.bluecoat.com/downloads/support/BCS_tb_enabling_transparent_auth.pdf)
and Novell BoarderManager
(http://support.novell.com/techcenter/articles/cfa03332.html)
--- Henrik Nordstrom <hno@squid-cache.org> wrote:
> On Sat, 30 Apr 2005, Varun wrote:
>
> > Is it possible to have any sort of
> > authentication with squid running as
> > transparent proxy.
>
> Yes, but not the HTTP authentication.
>
> To make authenitcation in a transparent proxy you
> need to figure out some
> way of authenticating the user based on his IP. The
> external_acl interface
> of Squid-2.5 or later allows you to plug this into
> Squid.
>
> Regards
> Henrik
>
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
Received on Sun May 01 2005 - 07:21:33 MDT
This archive was generated by hypermail pre-2.1.9 : Wed Jun 01 2005 - 12:00:02 MDT