Skip site navigation (1)Skip section navigation (2)

FreeBSD Manual Pages

  
 
  

home | help
digest_file_auth(8)	    System Manager's Manual	   digest_file_auth(8)

NAME
       digest_file_auth	- File based digest authentication helper for Squid.

       Version 1.1

SYNOPSIS
       digest_file_auth	[-c] file

DESCRIPTION
       digest_file_auth	 is  an	 installed  binary  authentication program for
       Squid. It handles  digest  authentication  protocol  and	 authenticates
       against	a  text	 file backend.	This program will automatically	detect
       the existence of	a concurrency channel-ID and adjust appropriately.  It
       may  be used with any value 0 or	above for the auth_param children con-
       currency= parameter.

OPTIONS
       -c	   Accept digest hashed	passwords rather than plaintext	in the
		   password file

CONFIGURATION
       Username	database file format:

       - comment lines are possible and	should start with a '#';

       - empty or blank	lines are possible;

       - plaintext entry format	is username:password

       - HA1 entry format is username:realm:HA1

       To  build a directory integrated	backend, you need to be	able to	calcu-
       late the	HA1 returned to	squid. To avoid	storing	a  plaintext  password
       you  can	 calculate  MD5(username:realm:password) when the user changes
       their password, and store the tuple username:realm:HA1.	then find  the
       matching	username:realm when squid asks for the HA1.

       This  implementation  could  be improved	by using such a	triple for the
       file format.  However storing such a triple does	little to improve  se-
       curity: If compromised the username:realm:HA1 combination is "plaintext
       equivalent" - for the purposes of digest	authentication they allow  the
       user  access.  Password synchronization is not tackled by digest	- just
       preventing on the wire compromise.

AUTHOR
       This program was	written	by Robert Collins _robertc@squid-cache.org_

       Based on	prior work by Arjan de Vet _Arjan.deVet@adv.iae.nl_

       This manual was written	by  Robert  Collins  _robertc@squid-cache.org_
       Amos Jeffries _amosjeffries@squid-cache.org_

COPYRIGHT
	*  Copyright (C) 1996-2017 The Squid Software Foundation and contribu-
       tors
	*
	* Squid	software is distributed	under GPLv2+ license and includes
	* contributions	from numerous individuals and organizations.
	* Please see the COPYING and CONTRIBUTORS files	for details.

       This program and	documentation is copyright to the authors named	above.

       Distributed under the GNU General Public	License	(GNU GPL) version 2 or
       later (GPLv2+).

QUESTIONS
       Questions  on  the usage	of this	program	can be sent to the Squid Users
       mailing list <squid-users@squid-cache.org>

REPORTING BUGS
       Bug reports  need  to  be  made	in  English.   See  http://wiki.squid-
       cache.org/SquidFaq/BugReporting for details of what you need to include
       with your bug report.

       Report bugs or bug fixes	using http://bugs.squid-cache.org/

       Report serious security bugs to Squid Bugs _squid-bugs@squid-cache.org_

       Report ideas for	new improvements to the	Squid Developers mailing  list
       <squid-dev@squid-cache.org>

SEE ALSO
       squid(8), GPL(7),
       The Squid FAQ wiki http://wiki.squid-cache.org/SquidFaq
       The Squid Configuration Manual http://www.squid-cache.org/Doc/config/

							   digest_file_auth(8)

NAME | SYNOPSIS | DESCRIPTION | OPTIONS | CONFIGURATION | AUTHOR | COPYRIGHT | QUESTIONS | REPORTING BUGS | SEE ALSO

Want to link to this manual page? Use this URL:
<https://www.freebsd.org/cgi/man.cgi?query=digest_file_auth&sektion=8&manpath=FreeBSD+12.1-RELEASE+and+Ports>

home | help