| Anonymous | Login | 2017-06-23 14:05 CEST |  |
| Main | My View | View Issues | Change Log | Roadmap |
| View Issue Details [ Jump to Notes ] | [ Issue History ] [ Print ] | ||||||||
| ID | Project | Category | View Status | Date Submitted | Last Update | ||||
| 0001616 | Endian Firewall | Proxy HTTP | public | 2009-02-24 15:19 | 2010-01-21 19:17 | ||||
| Reporter | bonald | ||||||||
| Assigned To | simon-endian | ||||||||
| Priority | normal | Severity | tweak | Reproducibility | always | ||||
| Status | closed | Resolution | no change required | ||||||
| Platform | OS | OS Version | |||||||
| Product Version | |||||||||
| Target Version | future | Fixed in Version | |||||||
| Summary | 0001616: Dansguardian should enable ntlm authplugin when using ntlm auth in squid | ||||||||
| Description | By default when enabling NTLM Proxy username are not passed to dansguardian. The only auth plugin enabled by default is ip.conf When enabling NTLM Proxy auth dansguardian.conf should uncomment proxy-basic and proxy-ntlm in auth plugins section. This way we can see which username got blocked in the Content Filter logs. | ||||||||
| Additional Information | Workaround: manually uncomment authplugin = '/etc/dansguardian/authplugins/proxy-basic.conf' authplugin = '/etc/dansguardian/authplugins/proxy-ntlm.conf' in /etc/dansguardian/dansguardian.conf.tmpl and restart danguardian. Now you should see the usernames in the content filter logs. | ||||||||
| Tags | No tags attached. | ||||||||
| Attached Files | |||||||||
 Relationships |
|
 Relationships |
|
Notes |
|
|
(0002506) simon-endian (developer) 2009-06-08 19:45 |
will test it with 2.3, but am not shure if it is compatible with the ip auth we use for multiple dansguardian profiles. |
|
(0002585) peter-endian (administrator) 2009-06-11 17:14 |
needs definitely the localip patch implemented also for ntlm authplugin. currently it is made only for ip authplugin. I'm also unsure if it's really necessary to use NTLM here, since authentication already has been done. It's only about the username and the username will always be passed to the parent (login=*:password) since it is a normal proxy-auth header. It's also to check if squid would pass the whole NTLM header to dansguardian. |
|
(0003689) peter-endian (administrator) 2010-01-21 19:17 |
dansguardian does not know anything about NTLM. |
|
Notes |
|
Issue History |
|||
| Date Modified | Username | Field | Change |
| 2009-02-24 15:19 | bonald | New Issue | |
| 2009-02-24 15:19 | bonald | Assigned To | => simon-endian |
| 2009-06-08 19:45 | simon-endian | Note Added: 0002506 | |
| 2009-06-08 19:45 | simon-endian | Status | new => assigned |
| 2009-06-09 22:20 | peter-endian | Relationship added | child of 0001921 |
| 2009-06-11 17:14 | peter-endian | Note Added: 0002585 | |
| 2009-09-03 19:23 | peter-endian | Relationship deleted | child of 0001921 |
| 2009-11-25 18:34 | peter-endian | Target Version | => future |
| 2010-01-21 19:17 | peter-endian | Note Added: 0003689 | |
| 2010-01-21 19:17 | peter-endian | Status | assigned => closed |
| 2010-01-21 19:17 | peter-endian | Resolution | open => no change required |
|
Issue History |
| Copyright © 2000 - 2012 MantisBT Group |
 |