|
This is
a setup for a Personalized denial page for squid, it can be used for
almost anything, from being denied if there not on the right network,
to being denied if they have not authenticated against the server.
Name: Squid
HomePage: http://www.squid-cache.org/
Function: proxy caching server for web clients
Now i'm going to use PAM to authenticate squid in this example, but
i'll give you a list of examples at the bottom of the page as to other
things you can use.
1. Now first we need to edit the squid.conf and add the following lines in the right area's nano /etc/squid/squid.conf
squid.conf:
# (in the basic area authentication area)
auth_param basic program /usr/lib/squid/pam_auth
auth_param basic children 5
auth_param basic realm Your Company Squid proxy-caching server
auth_param basic credentialsttl 2 hours
# (in the acl's area)
acl pam proxy_auth REQUIRED
|
2. At this point you can edit the squid pam module '/etc/pam.d/squid'
3. PAM (pluggable authenticate module) can authenticate against almost anything, unix, LDAP, winbind. it has many, many uses so look into PAM if you think it might be useful for you.
4. Now set the right permissions on /usr/lib/squid/pam_auth
chmod u+s /usr/lib/squid/pam_auth
5. Now set the squid ACLs to the following.
nano /etc/squid/squid.conf
squid.conf:
# added by squish (begin)
acl proxyerrorpage dst mc1.fedora.directory.server
acl SQUISHED1 proxy_auth REQUIRED
deny_info ERR_AUTH_PROXY pam
http_access allow pam
|
6. Now lets make the error page
cd /etc/squid/errors/
nano ERR_AUTH_PROXY
and fill it in with all the information you want, reason they are being banned, anything you want really.
BookMarking:
cell1
|
|
cell3 |
|
cell4
|
|
Trouble Shooting:
Go to the wiki page
Go to the 'Contact Us ' Forum
Go to the how-to's Support Forum
External Links:
http://www.squid-cache.org/
|
