Problema em integrar Dansguardian com squid 3 + NTLM.

Iniciado por brottor, 09 de Março de 2012, 15:18

tópico anterior - próximo tópico

brottor

Eu tenho um ambiente de rede (squid e dansguardian) que funciona sem NTLM, começamos a implementar NTLM e surgiu alguns problemas, detre eles um eu não consigui resolver. Quando acesso a conta do yahoo mail, após um minuto ou dois, aparece uma tela de login, acontece somente com windows XP, em maquina com windows 7 funciona perfeitamente. Descobri depois, que conectando apenas no squid também funciona normal. Logo acredito que o problema é como o Dans está passando as requisições pro Squid. Alguém já teve esse problema? ou algo parecido?



####################
dansguardian.com:
reportinglevel = 2

languagedir = '/etc/dansguardian/languages'

language = 'portuguese'

loglevel = 2

logexceptionhits = 2

logfileformat = 1

filterip =

filterport = 3128

proxyip = 127.0.0.1

proxyport = 8080

accessdeniedaddress = accessdenied.html

nonstandarddelimiter = on

usecustombannedimage = on
custombannedimagefile = '/usr/share/dansguardian/transparent1x1.gif'


filtergroups = 1
filtergroupslist = '/etc/dansguardian/lists/filtergroupslist'



bannediplist = '/etc/dansguardian/lists/bannediplist'
exceptioniplist = '/etc/dansguardian/lists/exceptioniplist'



showweightedfound = on

weightedphrasemode = 2


urlcachenumber = 1000

urlcacheage = 900




scancleancache = on


phrasefiltermode = 2


preservecase = 0


hexdecodecontent = off



forcequicksearch = off



reverseaddresslookups = off


reverseclientiplookups = off


logclienthostnames = off


createlistcachefiles = on



maxuploadsize = -1



maxcontentfiltersize = 256



maxcontentramcachescansize = 2000



maxcontentfilecachescansize = 20000



filecachedir = '/tmp'



deletedownloadedtempfiles = on



initialtrickledelay = 20



trickledelay = 10



downloadmanager = '/etc/dansguardian/downloadmanagers/fancy.conf'
downloadmanager = '/etc/dansguardian/downloadmanagers/default.conf'


contentscannertimeout = 60



contentscanexceptions = off


authplugin = '/etc/dansguardian/authplugins/proxy-basic.conf'

authplugin = '/etc/dansguardian/authplugins/proxy-ntlm.conf'

recheckreplacedurls = off




forwardedfor = on


usexforwardedfor = on


logconnectionhandlingerrors = on




logchildprocesshandling = off

maxchildren = 1008


minchildren = 8


minsparechildren = 4


preforkchildren = 6


maxsparechildren = 32


maxagechildren = 500


maxips = 0

ipcfilename = '/tmp/.dguardianipc'

urlipcfilename = '/tmp/.dguardianurlipc'

ipipcfilename = '/tmp/.dguardianipipc'

nodaemon = off

nologger = off

logadblocks = off

loguseragent = off

softrestart = off

mailer = '/usr/sbin/sendmail -t'



######################
smb.conf:

[global]
workgroup = LOCAL
netbios name = VM-HOST
winbind use default domain = yes
obey pam restrictions = yes
security = domain
encrypt passwords = true
wins server = 10.0.0.1
winbind uid = 10000-20000
winbind gid = 10000-20000
template shell = /bin/bash
winbind separator = +
invalid users = root
password server = meudc.local
ntlm auth = no
client ntlmv2 auth = yes
lanman auth = no
client plaintext auth = no
client lanman auth = no
client ntlm auth = no
winbind cache time = 3600
Linux Professional Institute Certificated Level 2.
LPI000220827