OT: Require authentication on Apache proxy server?

Thomas Charron tcharron at ductape.net
Tue Nov 12 17:51:08 EST 2002


Quoting Charlie Farinella <cfarinella at appropriatesolutions.com>:
> We're trying to duplicate what a client is doing and we're not sure
> what
> that is.  We'd be happy if we could require authentication for web
> access so we can run some tests.

  Well, if you're trying to lock down access to the web, the network 
architecture used will matter a great deal.  Typically, a network such as this 
would be behind some sort of a firewall, which would restrict 'normal' access 
outgoing to anything.  This is more of an 'on' or 'off' based solution, which 
would allow you to control what people did.  Typically, the firewall will only 
allow outgoing access, in a tightly controlled situation such as this, to the 
actual proxy server(s).  Then, when people want to access the web, they do so 
directly to the proxy servers, and the proxy servers can go out and fetch it.  
Taking this one step further, some companys will ALSO install a SOCKS proxy 
server.  This is simular to a 'web' proxy server, but it works with normal 
sockets, so long as the end use application is socks aware.  Many, such as 
AOLIM, etc, are.

  I'd be more then happy to continue this conversation and help you out further 
off list if you'd like, as I gather we may end up straying off the path 
of 'Linux talk'..  ;-)

--
Thomas Charron
-={ Is beadarrach an ni an onair }=-



More information about the gnhlug-discuss mailing list