Metode authentikasi di squid ada 3 macam :
- Basic = username & password ditransfer jelas dalam plain text, sehingga mudah sekali diketahui pihak ketiga
- Digest = metode ini jelas lebih baik drpd Basic, uses a hash based on the password and several other parameters
- NTLM = diimplementasikan di Microsoft Network
Cara implementasi metode ini :
install squid dan apache
# apt-get install squid apache2
edit file squid.conf
# vim /etc/squid/squid.conf
Cari kalimat berkut ” INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS”
Tambahkan konfigurasi berikut di bawah kalimat tadi :
auth_param digest program /usr/lib/squid/digest_pw_auth -c /etc/squid/password
auth_param digest children 2000
auth_param digest realm pens
auth_param digest nonce_garbage_interval 5 minutes
auth_param digest nonce_max_duration 30 minutes
auth_param digest nonce_max_count 50
auth_param digest post_workaround off
acl password proxy_auth REQUIRED
acl jarkom src 10.252.108.0/255.255.255.0
http_access allow jarkom password
create user n password
# htdigest -c /etc/squid/password pens akira
Adding password for akira in realm pens.
New password:
Re-type new password:
start squid
# /etc/init.d/squid start
ubah proxy browser
proxy : localhost ; port :3128
running browser
|
|
| Dari For Blogging |
October 21, 2009 at 10:31 pm
Saya juga pakai squid. Terima kasih atas info nya. Kita masih check nya menggunakan ip address.