Linux与云计算——第二阶段Linux服务器架设
第一十一章:代理Proxy服务器架设—Squid进行基础认证
基础认证
配置基础认证并且限制用户必须使用认证。
[1] 安装软件包以便包含htpasswd.
[root@server ~]# yum -y install httpd-tools
[2] 配置Squid来设置Basic Auth.
[root@server ~]# vi /etc/squid/squid.conf
acl CONNECT method CONNECT
# line 26: 添加以下行来开启认证
auth_param basic program /usr/lib64/squid/basic_ncsa_auth /etc/squid/.htpasswd
auth_param basic children 5
auth_param basic realm Squid Basic Authentication
auth_param basic credentialsttl 5 hours
acl password proxy_auth REQUIRED
http_access allow password
# 添加一个用户
[root@server ~]# htpasswd -c /etc/squid/.htpasswd jeffrey
[root@server ~]# systemctl restart squid
[3] 配置客户端.
[root@client ~]# vi /etc/profile
# add follows to the end
# username:password@proxyserver:port
MY_PROXY_URL="http://jeffrey:redhat@server.example.com:8080/"
HTTP_PROXY=$MY_PROXY_URL
HTTPS_PROXY=$MY_PROXY_URL
FTP_PROXY=$MY_PROXY_URL
http_proxy=$MY_PROXY_URL
https_proxy=$MY_PROXY_URL
ftp_proxy=$MY_PROXY_URL
export HTTP_PROXY HTTPS_PROXY FTP_PROXY http_proxy https_proxy ftp_proxy
[root@client ~]# source /etc/profile
# 针对YUM
[root@client ~]# vim /etc/yum.conf
# 在后面添加
proxy=http://server.example.com:8080/
proxy_username=jeffrey
proxy_password=redhat
# 针对wget
[root@client ~]# vi /etc/wgetrc
# 在后面添加
http_proxy = http://server.example.com:8080/
https_proxy = http://server.example.com:8080/
ftp_proxy = http://server.example.com:8080/
proxy_user = jeffrey
proxy_passwd = redhat
