Squid und smb_auth

I

iluvatar

Guest
Nachdem ich Squid installiert hatte, habe ich das Modul smb-auth nach dieser Anleitung http://www.linuxbu.ch/ergaenzung/Kapitel13.htm installiert.

Wenn ich das Modul teste, (/usr/local/bin/smb_auth -W F22Domain) wird bei korrekter Eingabe von Benutzername und Passwort der Inhalt von proxyauth (allow) ausgegeben - aber trotzdem wird zum Schluss die Fehlermeldung ERR produziert.

Ausgabe:

server:/ # /usr/bin/smb_auth -W F22Domain -d
admin pass135
Domain name: F22Domain
Pass-through authentication: no
Query address options:
Domain controller IP address: 192.168.0.100
Domain controller NETBIOS name: SERVER
Contents of //SERVER/NETLOGON/proxyauth: allow
ERR

Wenn ich von einem Clienten ins Internet möchte, kommt im Browser auch eine Abfrage für Benutzername und Passwort.
Wenn ich jedoch dort etwas Eingebe erscheint diese Abfrage erneut.

Hat jemand eine Idee?
 
strace hat folgendes in die Logdatei geschrieben:

execve("/usr/bin/smb_auth", ["/usr/bin/smb_auth", "-W", "F22domain", "-d"], [/* 80 vars */]) = 0
brk(0) = 0x804a000
access("/etc/ld.so.preload", R_OK) = -1 ENOENT (No such file or directory)
open("/etc/ld.so.cache", O_RDONLY) = 3
fstat64(3, {st_mode=S_IFREG|0644, st_size=75847, ...}) = 0
mmap2(NULL, 75847, PROT_READ, MAP_PRIVATE, 3, 0) = 0xb7f2b000
close(3) = 0
open("/lib/libc.so.6", O_RDONLY) = 3
read(3, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\300Y\1"..., 512) = 512
fstat64(3, {st_mode=S_IFREG|0755, st_size=1404242, ...}) = 0
mmap2(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0xb7f2a000
mmap2(NULL, 1176988, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0xb7e0a000
madvise(0xb7e0a000, 1176988, MADV_SEQUENTIAL|0x1) = 0
mmap2(0xb7f23000, 16384, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x118) = 0xb7f23000
mmap2(0xb7f27000, 9628, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0xb7f27000
close(3) = 0
mmap2(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0xb7e09000
set_thread_area({entry_number:-1 -> 6, base_addr:0xb7e096b0, limit:1048575, seg_32bit:1, contents:0, read_exec_only:0, limit_in_pages:1, seg_not_present:0, useable:1}) = 0
mprotect(0xb7f23000, 8192, PROT_READ) = 0
munmap(0xb7f2b000, 75847) = 0
brk(0) = 0x804a000
brk(0x806b000) = 0x806b000
fstat64(0, {st_mode=S_IFCHR|0600, st_rdev=makedev(136, 4), ...}) = 0
mmap2(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0xb7f3d000
fstat64(1, {st_mode=S_IFCHR|0600, st_rdev=makedev(136, 4), ...}) = 0
mmap2(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0xb7f3c000
read(0, "root justforfun\n", 1024) = 16
pipe([3, 5]) = 0
clone(child_stack=0, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0xb7e096f8) = 17298
close(3) = 0
fstat64(5, {st_mode=S_IFIFO|0600, st_size=0, ...}) = 0
mmap2(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0xb7f3b000
write(5, "F22domain\n\n\n2\nNETLOGON\nproxyauth"..., 49) = 49
close(5) = 0
waitpid(17298, [{WIFEXITED(s) && WEXITSTATUS(s) == 1}], 0) = 17298
--- SIGCHLD (Child exited) @ 0 (0) ---
munmap(0xb7f3b000, 4096) = 0
write(1, "ERR\n", 4) = 4
read(0,



Die access.log von Squid schreibt folgendes:

192.168.0.2 - root [10/Nov/2006:16:24:24 +0100] "GET http://www.google.de/ HTTP/1.1" 407 1722 TCP_DENIED:NONE


Die cache.log:

2006/11/10 17:09:42| Starting Squid Cache version 2.5.STABLE12 for i686-pc-linux-gnu...
2006/11/10 17:09:42| Process ID 17410
2006/11/10 17:09:42| With 1024 file descriptors available
2006/11/10 17:09:42| Performing DNS Tests...
2006/11/10 17:09:42| Successful DNS name lookup tests...
2006/11/10 17:09:42| DNS Socket created at 0.0.0.0, port 1110, FD 5
2006/11/10 17:09:42| Adding nameserver 62.72.64.237 from /etc/resolv.conf
2006/11/10 17:09:42| Adding nameserver 62.72.64.241 from /etc/resolv.conf
2006/11/10 17:09:42| helperOpenServers: Starting 5 'smb_auth' processes
2006/11/10 17:09:42| User-Agent logging is disabled.
2006/11/10 17:09:42| Referer logging is disabled.
2006/11/10 17:09:42| Unlinkd pipe opened on FD 15
2006/11/10 17:09:42| Swap maxSize 102400 KB, estimated 7876 objects
2006/11/10 17:09:42| Target number of buckets: 393
2006/11/10 17:09:42| Using 8192 Store buckets
2006/11/10 17:09:42| Max Mem size: 8192 KB
2006/11/10 17:09:42| Max Swap size: 102400 KB
2006/11/10 17:09:42| Local cache digest enabled; rebuild/rewrite every 3600/3600 sec
2006/11/10 17:09:42| Rebuilding storage in /var/cache/squid (DIRTY)
2006/11/10 17:09:42| Using Least Load store dir selection
2006/11/10 17:09:42| Set Current Directory to /var/cache/squid
2006/11/10 17:09:42| Loaded Icons.
2006/11/10 17:09:42| Accepting HTTP connections at 0.0.0.0, port 3128, FD 17.
2006/11/10 17:09:42| Accepting ICP messages at 0.0.0.0, port 3130, FD 18.
2006/11/10 17:09:42| HTCP Disabled.
2006/11/10 17:09:42| Accepting SNMP messages on port 3401, FD 19.
2006/11/10 17:09:42| WCCP Disabled.
2006/11/10 17:09:42| Ready to serve requests.
2006/11/10 17:09:42| Done reading /var/cache/squid swaplog (1 entries)
2006/11/10 17:09:42| Finished rebuilding storage from disk.
2006/11/10 17:09:42| 1 Entries scanned
2006/11/10 17:09:42| 0 Invalid entries.
2006/11/10 17:09:42| 0 With invalid flags.
2006/11/10 17:09:42| 1 Objects loaded.
2006/11/10 17:09:42| 0 Objects expired.
2006/11/10 17:09:42| 0 Objects cancelled.
2006/11/10 17:09:42| 0 Duplicate URLs purged.
2006/11/10 17:09:42| 0 Swapfile clashes avoided.
2006/11/10 17:09:42| Took 0.4 seconds ( 2.8 objects/sec).
2006/11/10 17:09:42| Beginning Validation Procedure
2006/11/10 17:09:42| Completed Validation Procedure
2006/11/10 17:09:42| Validated 1 Entries
2006/11/10 17:09:42| store_swap_size = 16k
2006/11/10 17:09:43| storeLateRelease: released 0 objects



Die rcsquid.log

leer



Die store.log:

1163175555.238 RELEASE -1 FFFFFFFF D9209AD5BA674238BCB64082B20D0FB1 407 1163175555 0 1163175555 text/html 1296/1621 GET http://www.google.de/
 
Zuletzt bearbeitet von einem Moderator:
Zurück
Oben