Under-Linux.org Fóruns - Ver Resposta Única - Proxy autenticando usuários Linux, Windows XP e Windows 98

damacenoneto · 11-05-2008, 11:56

como disse... essa semana estarei fazendo novamente meu proxy...

mas atualmente esta assim:

http_port 3128 transparent
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
cache_mem 128 MB
maximum_object_size_in_memory 512 KB
maximum_object_size 512 MB
minimum_object_size 0 KB
cache_swap_low 90
cache_swap_high 95
cache_dir ufs /cache 20000 16 256
cache_access_log /var/log/squid/access.log
visible_hostname Proxy_Combat
refresh_pattern ^ftp: 15 20% 2280
refresh_pattern ^gopher: 15 0% 2280
refresh_pattern . 15 20% 2280
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl SSL_ports port 443 563
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 901 # SWAT
acl purge method PURGE
acl CONNECT method CONNECT
http_access allow manager localhost
http_access allow manager
http_access allow purge localhost
http_access allow purge
http_access allow !Safe_ports
http_access allow CONNECT !SSL_ports
http_access allow localhost

auth_param basic realm Monitoramento de Internet, Digite seu Login e Senha para Acessar!
auth_param basic program /usr/lib/squid/ncsa_auth /etc/squid/passwd
acl superusers proxy_auth "/etc/squid/superusers"
http_access allow superusers
acl filhosvolney proxy_auth "/etc/squid/filhosvolney"
acl filhosvolneysites url_regex -i "/etc/squid/filhosvolneysites"
http_access deny filhosvolneysites
http_access allow filhosvolney
acl urls url_regex "/etc/squid/palavras"
http_access deny urls
acl autenticados proxy_auth REQUIRED
acl vendedores proxy_auth "/etc/squid/vendedores"
acl vendedoressites url_regex -i "/etc/squid/vendedoressites"
http_access deny vendedores !vendedoressites
http_access allow autenticados
http_access deny all

superusers é uma lista de usuarios que nao tem restricao, mas precisa se autenticar pra navegar

meu arquivo de senhas é
/etc/squid/passwd
pra adicionar usuarios, use o comando:

htpasswd -a /etc/squid/arquivodesenhas usuario [enter] (no meu caso era htpasswd -a /etc/squid/passwd usuario)

11-05-2008, 11:56	#8 (permalink)
como disse... essa semana estarei fazendo novamente meu proxy... mas atualmente esta assim: http_port 3128 transparent hierarchy_stoplist cgi-bin ? acl QUERY urlpath_regex cgi-bin \? no_cache deny QUERY cache_mem 128 MB maximum_object_size_in_memory 512 KB maximum_object_size 512 MB minimum_object_size 0 KB cache_swap_low 90 cache_swap_high 95 cache_dir ufs /cache 20000 16 256 cache_access_log /var/log/squid/access.log visible_hostname Proxy_Combat refresh_pattern ^ftp: 15 20% 2280 refresh_pattern ^gopher: 15 0% 2280 refresh_pattern . 15 20% 2280 acl all src 0.0.0.0/0.0.0.0 acl manager proto cache_object acl localhost src 127.0.0.1/255.255.255.255 acl SSL_ports port 443 563 acl Safe_ports port 80 # http acl Safe_ports port 21 # ftp acl Safe_ports port 443 563 # https, snews acl Safe_ports port 70 # gopher acl Safe_ports port 210 # wais acl Safe_ports port 1025-65535 # unregistered ports acl Safe_ports port 280 # http-mgmt acl Safe_ports port 488 # gss-http acl Safe_ports port 591 # filemaker acl Safe_ports port 777 # multiling http acl Safe_ports port 901 # SWAT acl purge method PURGE acl CONNECT method CONNECT http_access allow manager localhost http_access allow manager http_access allow purge localhost http_access allow purge http_access allow !Safe_ports http_access allow CONNECT !SSL_ports http_access allow localhost auth_param basic realm Monitoramento de Internet, Digite seu Login e Senha para Acessar! auth_param basic program /usr/lib/squid/ncsa_auth /etc/squid/passwd acl superusers proxy_auth "/etc/squid/superusers" http_access allow superusers acl filhosvolney proxy_auth "/etc/squid/filhosvolney" acl filhosvolneysites url_regex -i "/etc/squid/filhosvolneysites" http_access deny filhosvolneysites http_access allow filhosvolney acl urls url_regex "/etc/squid/palavras" http_access deny urls acl autenticados proxy_auth REQUIRED acl vendedores proxy_auth "/etc/squid/vendedores" acl vendedoressites url_regex -i "/etc/squid/vendedoressites" http_access deny vendedores !vendedoressites http_access allow autenticados http_access deny all superusers é uma lista de usuarios que nao tem restricao, mas precisa se autenticar pra navegar meu arquivo de senhas é /etc/squid/passwd pra adicionar usuarios, use o comando: htpasswd -a /etc/squid/arquivodesenhas usuario [enter] (no meu caso era htpasswd -a /etc/squid/passwd usuario) __________________ CombatNet - Internet Banda Larga Paraguaçu Paulista e Região	damacenoneto Registrado em: Sep 2007 Localização: São Paulo Posts: 253 Agradeceu: 9 Agradecido 19 vez(es) em 19 Posts Reputação: 44