Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > Linux Forums > HOWTO-Related Questions

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Reply
 
Thread Tools Display Modes
  #1  
Old 15th May 2008, 04:33
propercc propercc is offline
Junior Member
 
Join Date: May 2008
Location: Utica, NY
Posts: 4
Thanks: 0
Thanked 0 Times in 0 Posts
Send a message via Skype™ to propercc
Question How to Install and configure Dansguardian with NTLM auth - squid problem

I follow the instructions here.

I have successfully:

Configure Kerberos.
Configure Dansguardian.
Webmin.
Samba.
Winbind.
Join the domain.
I can query the domain users and groups fine.

Problems:

#1

The step below is giving me problems. I do not have etc/init.d/winbind-ch.sh in installalation of Debian Etch. There is a winbind file in that directory but no winbind-ch.sh.

Code:
Squid needs access to /var/run/samba/winbindd_privileged
We can easly fix this but the permissions will change when we reboot
So Jesse Waters on ubuntuforums.org posted a script that will set the permissions on every system boot.

Edit /etc/init.d/winbind-ch.sh and paste the following into it.

#!/bin/sh
#set -x
WINBINDD_PRIVILEGED=/var/run/samba/winbindd_privileged
chmodgrp() {
chgrp proxy $WINBINDD_PRIVILEGED || return 1
chmod g+w $WINBINDD_PRIVILEGED || return 1
}
case "$1" in
start)
chmodgrp
;;
restart|reload|force-reload)
echo "Error: argument '$1' not supported" >&2
exit 3
;;
stop)
;;
*)
echo "Usage: $0 start|stop" >&2
exit 3
;;
esac
#EOF

update-rc.d winbind-ch.sh start 21 2 3 4 5 .
#2

I followed and completed every step under configure the Squid Proxy Server however I am left with this error upon trying to restart squid:

Failed to reconfigure squid :
2008/05/14 22:22:05| Invalid Proxy Auth ACL 'acl ntlm_auth proxy_auth REQUIRED' because no authentication schemes are fully configured.
FATAL: Bungled squid.conf line 1458: acl ntlm_auth proxy_auth REQUIRED
Squid Cache (Version 2.6.STABLE5): Terminated abnormally.



Any ideas?
Reply With Quote
Sponsored Links
  #2  
Old 16th May 2008, 14:52
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,740 Times in 2,575 Posts
Default

You can search for winbind-ch.sh like this:
Code:
updatedb
locate winbind-ch.sh
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
  #3  
Old 16th May 2008, 15:51
propercc propercc is offline
Junior Member
 
Join Date: May 2008
Location: Utica, NY
Posts: 4
Thanks: 0
Thanked 0 Times in 0 Posts
Send a message via Skype™ to propercc
Default

Yup, tried that already. I get no response. Not even a scrolling list of file names. No output, error, nothing.
__________________
ProperCC Corporation: Web Marketing, Creative Web Design, Web Application Development, located in New York.
Reply With Quote
  #4  
Old 16th May 2008, 23:30
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,740 Times in 2,575 Posts
Default

That means the file does not exist. Have you tried to contact the author of the tutorial?
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
  #5  
Old 20th May 2008, 16:23
Michele A. Michele A. is offline
Junior Member
 
Join Date: May 2008
Posts: 1
Thanks: 0
Thanked 1 Time in 1 Post
Default

Quote:
Originally Posted by propercc
I follow the instructions
Failed to reconfigure squid :
2008/05/14 22:22:05| Invalid Proxy Auth ACL 'acl ntlm_auth proxy_auth REQUIRED' because no authentication schemes are fully configured.
FATAL: Bungled squid.conf line 1458: acl ntlm_auth proxy_auth REQUIRED
Squid Cache (Version 2.6.STABLE5): Terminated abnormally.
I've solved this issue by moving the following lines

auth_param ntlm program /usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp
auth_param ntlm children 5
auth_param basic program /usr/bin/ntlm_auth --helper-protocol=squid-2.5-basic
auth_param basic children 5
auth_param basic credentialsttl 2 hour
auth_param basic realm Domain Proxy Server

before the auth acl:

acl apache rep_header Server ^Apache
acl ntlm_auth proxy_auth REQUIRED

Tell me if works also for you.
Reply With Quote
The Following User Says Thank You to Michele A. For This Useful Post:
falko (21st May 2008)
  #6  
Old 11th November 2008, 16:34
xenonex xenonex is offline
Junior Member
 
Join Date: Nov 2008
Posts: 1
Thanks: 0
Thanked 0 Times in 0 Posts
 
Default Thanks Michele A.

Your resolution (Putting the auth_param configurations above the acl) fixed my problem as well.
Reply With Quote
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Problem with install of ISPConfig on OpenSuSe 10.3 64 Bit Prometheus Installation/Configuration 5 14th November 2007 10:11
Error compile Courier-Authlib pcom11 Server Operation 1 29th September 2007 12:15
Install error on Opensuse 10.2 64 bit (SSL problem) klaus++ Installation/Configuration 2 24th September 2007 12:47
Fedora Core 4 and hp Printer install problem. slopoke_iii Desktop Operation 3 5th May 2007 22:27
Install Problem... roy_wiz678@yahoo.com.ph Installation/Configuration 2 15th July 2006 13:19


All times are GMT +2. The time now is 20:03.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.