[squid-users] squid acl + user through ssh
Albert Shih
Albert.Shih at obspm.fr
Fri Apr 19 06:06:08 UTC 2024
Le 18/04/2024 à 18:42:57-0500, Grant Taylor a écrit
> On 4/18/24 2:46 PM, Albert Shih wrote:
> > So what I'm trying to do is to use ACL according to the user who make
> > the ssh connection, I don't want «another» authentication.
>
> About the only thing that comes to mind is RFC 931 (?) ident (might be okay
> on the same system) or something that matches the process owner. (I'm
> thinking iptables process owner match extension.)
>
> But my testing seems to show that such port forwarding is done by the ssh
> daemon owner process not the connecting user.
Yes. Indeed.
>
> If it wasn't for your "don't want another authentication" I'd wonder about
> username and password creds to authenticate to Squid.
Well....It's not me who don't want another authentication, it's the
application (not a web browser) who only know (and I'm not sure of that
yet) how to do a basic http authentication.
Regards
--
Albert SHIH 🦫 🐸
France
Heure locale/Local time:
ven. 19 avril 2024 07:58:44 CEST
More information about the squid-users
mailing list