[squid-users] Authentication\Authorization using a PAC file?
Eliezer Croitoru
eliezer at ngtech.co.il
Mon Nov 24 16:43:32 UTC 2014
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 11/24/2014 03:24 PM, Kinkie wrote:
> But what if multiple users share the same IP (e.g. Citrix, X11)?
This is another situation which requires authentication...
Two users can use the same pac files and be authorized as another
user(a regular forward proxy).
While I do like the Radius solution we can use external_acl in some
way to check if the specific user is allowed to authenticate from this
specific IP.
In a more strict environments a Radius server can help with this issue
to disallow one username to be allow the usage from two src IP at the
same time.
Eliezer
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iQEcBAEBAgAGBQJUc2A0AAoJENxnfXtQ8ZQUW6UH/2HM/FHijhGozGUlCHMc3hpi
IdBQhEWjkKAYmTmI44ZhULPn/Nc76qBbHW8cRBhU4ziOJLyQ/Wq9yFKa8g4HS7IS
pJBzQum+fP2eVbUVz1kqjggq2sPnEe8SNtLr99sF25UoocTf/thl3ssoKOqHgudb
1vgRIQoDMB1SMqQ5XAQ/rwiFg969OITs65AKUHEu50FfbGeorqO64+32mLtGcoUG
hDKGThLMHnZeFsNafCecm2bvvJjcCjBV3Uj4tbwbYF2uRRRdbT3aa9vTnWUH6na0
exA6Cj7UQQp42eakWZl7LKd9xRTn4kReGgLxRa+v+VO/hwNkd4z7wyhUQWpE3mA=
=fzkF
-----END PGP SIGNATURE-----
More information about the squid-users
mailing list