This program is written in perl, it needs the md5 Module.
New: It's no longer needs the MIME::Base64 Modul, it is build in now.
Note: On RedHat Linux version > 6.0 the md5 Module is installed.
It has some security features, which are necessary for firewalls.
- support for md5 encryption for passwords with base64 encoding
- encypt unencrypted passwords in the squidpasswd and rewrite them
- sort proxy users alphabetical, if the squidpasswd will be rewritten
- set a encrypted default password, if a proxy user have no password
- reload the squidpasswd, if it where changed
- logs the authetication process optional
- supports filelocking for reading and writing
You can it download here via http squidauth.tgz (version from 2004/09/28)
Version for Digest::MD5 squidauthdigest.tgz (version from 2004/09/28)
- support for crypt encryption (but md5 is much secure)
- check if the md5 modules is installed
- commandline options
- documentation
- tar -xzvf squidauth.tgz
- cp squidauth.pl /usr/sbin (for example)
- add the following line to the squid.conf:
<--- snip --->
authenticate_program /etc/squid/auth.pl /etc/squid/squidpasswd
<--- snip --->
for newer squid versions
<--- snip --->
auth_param basic program /usr/sbin/squidauth.pl /etc/squid/squidpasswd
<--- snip --->
- you can also set the default password in this line:
<--- snip --->
authenticate_program /etc/squid/squidauth.pl /etc/squid/squidpasswd password
<--- snip --->
The password in this line can be plain or encyrpted, but the last is recommended.
- create the /etc/squid/squidpasswd:
<--- snip --->
username1:password (plain or encrypted)
username2: (without password, the default password will be used)
<--- snip --->
- the squidpasswd should be owned by the user of squid, normally squid
There are an update for webmin to use md5 encryption. Newer Version have this function build in and no update is needed.
