06-13-2002
A friend always recommended Squid - he works the security side of things and I would guess he knows better than I on the subject (this recommendation was about two years ago).
Look for it at
squid-cache.org
Last edited by RTM; 06-13-2002 at 02:23 PM..
8 More Discussions You Might Find Interesting
1. IP Networking
Are there any free local proxy for Linux which cache data and gzip transmitted packages? (5 Replies)
Discussion started by: Hitori
5 Replies
2. BSD
how do i configure proxy in freeBSD or NAT so that when i set it up as a server can connect other to my new gateway (0 Replies)
Discussion started by: AkinOkin
0 Replies
3. Solaris
Hi guys i need your advice in setting up my solaris machine to work behind proxy. in our environment we have ISA proxy server requires authorization. Any one know how to configure the solaris to work with this proxy? im trying to access outside under console but thats not possible becuase i dont... (2 Replies)
Discussion started by: saveka
2 Replies
4. IP Networking
Hi,
I am involved in a project on Debian. One of my requirement is to route an IP packet in my application to a proxy server and receive the reply from the proxy server as an IP packet. My application handles data at the IP frame level. My application creates an IP packet(with all the necessary... (0 Replies)
Discussion started by: Rajesh_BK
0 Replies
5. Red Hat
Hi,
I am having windows proxy server and it is having proxy.pac file, so for accessing internet we are using automatic proxy url setting in the browser (http://windowsservername/file.pac).
Now my requirement is if I want to set the proxy settings in linux server from the cmd line how can I... (1 Reply)
Discussion started by: ktrimu
1 Replies
6. Linux
ok, in my company i have a proxy that filter some url (yea, i know ;))
It was more then 7 year that i made a ssh tunnel with my linux machine, at work i used putty and redirect the internal squid proxy... it work very well!
Yesterday the sysadmin has made a "content port filtering" and block... (0 Replies)
Discussion started by: zanac
0 Replies
7. UNIX for Advanced & Expert Users
Hi
I am trying to make a survey of prefetching proxies and as of now everything that I can find is only age old proxies like the wwwcollector or squid prefetch that seems to be orphaned. Is there something out there that may be more interesting and recent?
Your thoughts are greatly... (0 Replies)
Discussion started by: jamie_123
0 Replies
8. IP Networking
I need to configure a proxy on my local machine to use an upstream proxy (installed on another machine). The upstream proxy requires Digest/NTLM authorization. I want the local proxy to deal with the upstream proxy's authorization details and provides authorization free access to users that connect... (0 Replies)
Discussion started by: Russel
0 Replies
LEARN ABOUT CENTOS
digest_file_auth
digest_file_auth(8) System Manager's Manual digest_file_auth(8)
NAME
digest_file_auth - File based digest authentication helper for Squid.
Version 1.0
SYNOPSIS
digest_file_auth [-c] file
DESCRIPTION
digest_file_auth is an installed binary authentication program for Squid. It handles digest authentication protocol and authenticates
against a text file backend.
OPTIONS
-c Accept digest hashed passwords rather than plaintext in the password file
CONFIGURATION
Username database file format:
- comment lines are possible and should start with a '#';
- empty or blank lines are possible;
- plaintext entry format is username:password
- HA1 entry format is username:realm:HA1
To build a directory integrated backend, you need to be able to calculate the HA1 returned to squid. To avoid storing a plaintext password
you can calculate MD5(username:realm:password) when the user changes their password, and store the tuple username:realm:HA1. then find the
matching username:realm when squid asks for the HA1.
This implementation could be improved by using such a triple for the file format. However storing such a triple does little to improve
security: If compromised the username:realm:HA1 combination is "plaintext equivalent" - for the purposes of digest authentication they
allow the user access. Password syncronisation is not tackled by digest - just preventing on the wire compromise.
AUTHOR
This program was written by Robert Collins <robertc@squid-cache.org>
Based on prior work by Arjan de Vet <Arjan.deVet@adv.iae.nl>
This manual was written by Robert Collins <robertc@squid-cache.org> Amos Jeffries <amosjeffries@squid-cache.org>
COPYRIGHT
This program and documentation is copyright to the authors named above.
Distributed under the GNU General Public License (GNU GPL) version 2 or later (GPLv2+).
QUESTIONS
Questions on the usage of this program can be sent to the Squid Users mailing list <squid-users@squid-cache.org>
REPORTING BUGS
Bug reports need to be made in English. See http://wiki.squid-cache.org/SquidFaq/BugReporting for details of what you need to include with
your bug report.
Report bugs or bug fixes using http://bugs.squid-cache.org/
Report serious security bugs to Squid Bugs <squid-bugs@squid-cache.org>
Report ideas for new improvements to the Squid Developers mailing list <squid-dev@squid-cache.org>
SEE ALSO
squid(8), GPL(7),
The Squid FAQ wiki http://wiki.squid-cache.org/SquidFaq
The Squid Configuration Manual http://www.squid-cache.org/Doc/config/
digest_file_auth(8)