CentOS Stream 9
Sponsored Link

Squid : Basic Authentication2022/03/22

 
Set Basic Authentication to limit access to Squid.
[1] Install a package which includes htpasswd.
[root@prox ~]#
dnf -y install httpd-tools
[2] Configure Squid to set Basic Authentication.
[root@prox ~]#
vi /etc/squid/squid.conf
.....
.....
acl Safe_ports port 591         # filemaker
acl Safe_ports port 777         # multiling http
# line 28 : add follows for Basic auth
auth_param basic program /usr/lib64/squid/basic_ncsa_auth /etc/squid/.htpasswd
auth_param basic children 5
auth_param basic realm Squid Basic Authentication
auth_param basic credentialsttl 5 hours
acl password proxy_auth REQUIRED
http_access allow password

[root@prox ~]#
systemctl restart squid

# add a user : create a new file with [-c] option

[root@prox ~]#
htpasswd -c /etc/squid/.htpasswd cent

New password:    
# set password

Re-type new password:
Adding password for user cent
Proxy Client : CentOS
[3] Configure CentOS Stream Proxy Client for Basic Authentication.
[root@client ~]#
vi /etc/profile.d/proxy.sh
# create new
# username:password@proxyserver:port

MY_PROXY_URL="cent:password@prox.srv.world:3128"

HTTP_PROXY=$MY_PROXY_URL
HTTPS_PROXY=$MY_PROXY_URL
FTP_PROXY=$MY_PROXY_URL
http_proxy=$MY_PROXY_URL
https_proxy=$MY_PROXY_URL
ftp_proxy=$MY_PROXY_URL

export HTTP_PROXY HTTPS_PROXY FTP_PROXY http_proxy https_proxy ftp_proxy

[root@client ~]#
source /etc/profile.d/proxy.sh
# or it's possible to set proxy settings for each application, not System wide
# for dnf

[root@client ~]#
vi /etc/dnf/dnf.conf
# add to the end

proxy=prox.srv.world:3128
proxy_username=cent
proxy_password=password
# for curl

[root@client ~]#
vi ~/.curlrc
# create new

proxy=prox.srv.world:3128
proxy-user=cent:password
# for wget

[root@client ~]#
vi /etc/wgetrc
# add to the end

http_proxy = prox.srv.world:3128
https_proxy = prox.srv.world:3128
ftp_proxy = prox.srv.world:3128
proxy_user = cent
proxy_passwd = password
Proxy Client : Windows
[4] For Windows Clients, none of specific settings, but when access to a web, proxy server requires authentication like follows, then input username and password.
Matched Content