[squid-users] proxy_auth_regex

[Piana, Josh]

Hey Squid users,

Running into an issue I'm trying to figure out.

We have a few acl directives using "proxy_auth_regex -i" and when I have these active, it blocks any proxy connection with an HTTP 407 error, according to the logs.

Here's an example:
# block certain user IDs from using proxy server
#acl block_user proxy_auth_regex -i "/etc/squid/block_user"
#http_access deny block_user

What's supposed to happen with this ACL, is that any username we have on that list is to be blocked from internet access. But it seems to be blocking known good usernames too. I'm not sure where to go from here, we would like to use these ACL's but for right now I have these rules commented out.

Here's a few other rules we have that have the same issue:
# executable blocking
# reference this list for extensions to block
acl exec_files url_regex -i "/etc/squid/exec_files"

# ignore these usernames from being blocked
#acl exec_users proxy_auth_regex -i "/etc/squid/exec_users"

# combine the rules
#http_access deny !bad_exception_urls !exec_users exec_files
#deny_info ERR_BLOCK_TYPE exec_files

>From what you can see above, we have "acl exec_files url_regex -i /etc/squid/exec_files" uncommented, but it's not active because the "http_access directive" had to be commented out because it includes the other statements that include "proxy_auth_regex -i" which block all internet access as well.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20241024/d417b627/attachment.htm>