[NTLUG:Discuss] Proxy Servers (SOCKS type)
MadHat
madhat at unspecific.com
Tue Aug 27 10:12:49 CDT 2002
On Mon, 2002-08-26 at 19:43, Chris Cox wrote:
> chris.gamble at CPBINC.com wrote:
>
> >Does anyone know the best way to setup a full authenticating proxy? I am
> >currently using squid which does a great job for www traffic, but would like
> >to proxy other protocols like irc and pop3. I use this on my home network
> >(mostly to prevent my child from reaching the great internet), so I would
> >prefer something that had a decent auth system. I have used inets dante, but
> >its auth system is based on ip address, which I do not think is a strong
> >auth method.
> >
> >Any help is greatly appreciated..
> >
Use a SOCKSv5 proxy. Anything that supports SOCKS will work with it and
it is widely supported. Squid does support authentication, but won't do
other protocols (other than http, ftp and gopher).
> I'm not surf if what is being asked for is possible. I mean, how does the
> client respond to the "auth" prompting for a password.
Depends, some support SSL client cert auth, some will do user/pass, some
will support PAP/CHAP or NTLM authentication. Often you have to put a
user/pass in configs or the client will just popup a user/pass dialog
when you need to get through the proxy. The client has to support
SOCKSv5 for it to work of course.
>
> However, you could easily tunnel through SSH, and the bringing up
> of the tunnel is authenticated... maybe that would suffice (??).
>
Thats a pain to have to set up each connection, but would work.
> Just an idea,
> Chris
>
>
>
>
> _______________________________________________
> https://ntlug.org/mailman/listinfo/discuss
>
--
MadHat at Unspecific.com
"Anyone who understands Linux/Unix, really understands the universe.
Anyone who understands Windows, really understands Windows."
- Richard Thieme, DefCon 10, 2002
More information about the Discuss
mailing list