RE: [squid-users] Authentication TTL

Thanks Duane,

Is there a way to get the desired result from squid? Basically management
wants people to re-authenticate after 15 minutes in case someone walks away
from a multiuser station and leaves their browser open. This would prevent
someone else from being able to browse the web under a different users
account.

Cheers,

Travis

-----Original Message-----
From: Duane Wessels [mailto:wessels@squid-cache.org]
Sent: Friday, December 19, 2003 10:52 AM
To: Travis Bullock
Cc: Squid Users (E-mail)
Subject: Re: [squid-users] Authentication TTL

On Fri, 19 Dec 2003, Travis Bullock wrote:

> Hey all, Greenhorn here again.
>
> I have the squid up and running nicely with NCSA authentication, currently
> testing on my own XP machine with IE6. I would like the users credentials
to
> expire every 15 minutes as per request from management.
>
> I set the 'auth_param basic credentialsttl' to 15 minutes, opened my
browser
> and continued to surf for about 17 minutes (one of the benefits of the job
I
> suppose). Unfortunately the helper never asked me to reauthenticate during
> that time.
>
> Is there something else I need to configure to allow for this to work?

After 15 minutes, Squid contacts the NCSA helper again. The NCSA helper
checks its password file again. So unless you changed your password
in the password file, your browser won't propmt you for a new password.

Duane W.
Received on Fri Dec 19 2003 - 11:47:18 MST