|
mysquid_auth ¤×ÍÍÐäÃ?
|
|
mysquid_auth ¤×Í â»Ãá¡ÃÁ»ÃÐàÀ· proxy authentication ·ÕèªèÇÂàÊÃÔÁ¤Ø³ÊÁºÑµÔ´éÒ¹¡ÒõÃǨÊͺª×èÍáÅÐÃËÑʼèÒ¹¢Í§¼Ùéãªé§Ò¹ÍÔ¹àµÍÃìà¹çµ¼èÒ¹ Squid Proxy Server
|
| |
|
¤ÇÒÁÃÙéàº×éͧµé¹à¡ÕèÂǡѺ¡ÒÃ·Ó proxy authenticate
|
|
â»Ãá¡ÃÁ»ÃÐàÀ· Proxy Authentication ·Õè·Ó§Ò¹ÃèÇÁ¡Ñº Squid ÁÕÍÂÙèà»ç¹¨Ó¹Ç¹ÁÒ¡ áµèÅÐâ»Ãá¡ÃÁ¡çÁդسÊÁºÑµÔ áÅÐà·¤¹Ô¤ÇÔ¸Õ¡ÒõÃǨÊͺÊÔ·¸Ô¢Í§¼Ùéãªé§Ò¹·ÕèµèÒ§¡Ñ¹ÍÍ¡ä»
àªè¹ â»Ãá¡ÃÁ ncsa_auth ¨ÐãªéºÑªÕÃÒª×èͼÙéãªéÃкºÃèÇÁ¡Ñº Shadow password ¢Í§Ãкº ( ä¿Åì /etc/shadow )
|
| |
|
mysquid_auth ᵡµèÒ§¨Ò¡â»Ãá¡ÃÁÍ×è¹ æ 㹪¹Ô´à´ÕÂǡѹÍÂèÒ§äúéÒ§?
|
â»Ãá¡ÃÁ¹ÕéÁÕ¢éÍᵡµèÒ§¨Ò¡â»Ãá¡ÃÁÍ×è¹ æ ¤×Í
- ÁÕä¿Åìà¡çºÃÒª×èͼÙéãªéà»ç¹¢Í§µÑÇàͧá¡ÍÍ¡¨Ò¡â»Ãá¡ÃÁÍ×è¹ æ â´ÂÍÔÊÃÐ ¨Ö§äÁè¢Öé¹ÍÂÙè¡Ñºâ»Ãá¡ÃÁÍ×è¹ æ
- äÁè¨Óà»ç¹µéͧ set uid «Öè§à»ç¹¡ÒÃà»Ô´ªèͧâËÇè´éÒ¹¤ÇÒÁ»ÅÍ´ÀÑ¢ͧÃкº
- ÁÕ¡Òúѹ·Ö¡ Log äÇéá¡ÍÍ¡¨Ò¡ log file ¢Í§ Squid ªèÇÂãËéÊÒÁÒöµÃǨÊͺä´é§èÒ¡ÇèÒ
|
| |
|
¢Ñ鹵͹¡ÒõԴµÑé§áÅÐãªé§Ò¹â»Ãá¡ÃÁ mysquid_auth
|
- ÊÃéÒ§ä´àÃ礷ÍÃÕè /mySquid_Auth
- ¤Ñ´ÅÍ¡ä¿Åì mySquid_Auth ŧÊÙèä´àÃ礷ÍÃÕè¹Õé
- ÊÃéÒ§ä¿Åì /mySquid_Auth/users.txt à¾×èÍãªéà¡çºª×èÍ user áÅÐ password ã¹ÃٻẺ 1 user µèÍ 1 ºÃ÷Ѵ ´Ñ§µÑÇÍÂèÒ§
user1 password1
user2 password2
user3 password3
- ÍÂèÒÅ×ÁµÃǨ´Ù permission ¢Í§ä¿Åìâ»Ãá¡ÃÁ mySquid_Auth µéͧÊÒÁÒö Execute ä´é ( 755 à»ç¹¤èһáµÔ )
- á¡éä¢ä¿Åì¤Í¹¿×¡¢Í§ Squid ( /etc/squid/squid.conf ) â´Âã¹·Õè¹Õé¨Ðà¾ÔèÁàµÔÁà¢éÒä»ËÅѧ¨Ò¡ squid ·Ó§Ò¹à»ç¹»Ã¡µÔÍÂÙèáÅéÇ
- á¡é䢺Ã÷Ѵ authentication_program ´Ñ§¹Õé
authentication_program /mySquid_Auth/mySquid_Auth
- źà¤Ã×èͧËÁÒ # ˹éÒºÃ÷Ѵ¢éͤÇÒÁ authenticate_children 5 ÍÍ¡
- źà¤Ã×èͧËÁÒ # ˹éÒºÃ÷Ѵ¢éͤÇÒÁ acl password proxy_auth REQUIRED ÍÍ¡
- ¤é¹ËÒºÃ÷Ѵ¢éͤÇÒÁ http_access allow localhost áÅéÇà¾ÔèÁ¢éͤÇÒÁ 1 ºÃ÷Ѵ
http_access allow password all
- ºÑ¹·Ö¡ä¿Åì squid.conf ¹Õé áÅéÇÃÕʵÒÃìµ squid ÍÕ¡¤ÃÑé§
- ·´Åͧà»Ô´àÇçºä«µì¼èÒ¹ squid ¨Ð»ÃÒ¡¯¡ÃͺâµéµÍºãËé»é͹ª×èÍ username áÅÐ password áÊ´§ÇèÒ mySquid_Auth àÃÔèÁµé¹·Ó§Ò¹áÅéÇ
|
| ¡ÅѺÊÙè˹éÒº·¤ÇÒÁ |
