[squid-users] Multi-clients VPS - Authentication been shared.
Graminsta
marcelorodrigo at graminsta.com.br
Tue Nov 16 16:53:52 UTC 2021
Hello friends,
I'm using these user authentication lines in squid.conf based on user's
authentication list:
auth_param basic program /usr/lib/squid/basic_ncsa_auth /etc/squid/users
auth_param basic children 5
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hours
auth_param basic casesensitive off
http_access allow localhost
acl clientes proxy_auth REQUIRED
http_access allow clientes
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localhost manager
http_access deny manager
http_access deny all
#List of outgoings (all IPs are fake)
http_port 181.111.11.111:4000 name=3
acl ip3 myportname 3
tcp_outgoing_address 2804:1934:2E1::3D6 ip3
http_port 181.111.11.112:4001 name=4
acl ip4 myportname 4
tcp_outgoing_address 2804:1934:3a8::3D7 ip4
The problem is that everyone whom is in the users file are allow to use all
tcp_outgoing_address.
If a smarter client scans for open IPs and ports will be able to find these
outgoings.
How can I restrict each user to their own tcp_outgoing_address output?
Tks.
Marcelo
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20211116/69fb0a22/attachment.htm>
More information about the squid-users
mailing list