Squid Ubuntu 8.04 LTS

**monkeyx** · 18th June 2009, 08:38 PM

We needs to rebuild our aging squid server and came accross this alternate way to bind with AD

HOWTO: Active Directory authentication in Ubuntu 8.04 and 8.10 The eternal fight between admins and computers

Anyone tried this?

**dhicks** · 18th June 2009, 09:21 PM

Originally Posted by monkeyx

Anyone tried this?

Nope, but I'm planning to now!

--
David Hicks

**monkeyx** · 19th June 2009, 07:53 AM

Not sure whether to try it. Our existing server uses samba and winbind and has been rock solid. Main reason for upgrading is make an openVZ template machine on a newer version of Ubuntu.

It looks like openwise may be less robust and article does not say how well it scales.

Any other views on this?

**ind1ekid** · 19th June 2009, 08:32 AM

I remember seeing this a while back on the ubuntu help page;
https://help.ubuntu.com/8.04/serverg...wise-open.html
I cant remember what put me off going this route, but i didnt use it.

I setup a new squid box yesterday on 9.04 using the trusty winbind/samba method, and it takes no time at all, plus like you say its rock solid!

**monkeyx** · 19th June 2009, 08:41 AM

Is is still necessary to create an init.d script to work around the winbindd AD logging issues? We will be using 8.04 LTS rather 9.04 any major differences for squid between 8.04 and 9.04?

Tim

**ind1ekid** · 22nd June 2009, 08:05 AM

Originally Posted by monkeyx

Is is still necessary to create an init.d script to work around the winbindd AD logging issues? We will be using 8.04 LTS rather 9.04 any major differences for squid between 8.04 and 9.04?

Tim

Winbind/AD logging issue? Ive not come across that one, i can check into it if you can point me in the right direction though

As for major differences, there doesnt seem to be any noticable ones, ive only had it running since the back of last week but all is well up to now! Ive still got the old box set up still just in case!!

**monkeyx** · 22nd June 2009, 08:29 AM

This is a very dry description of what to do as running around a bit today! :-

This fixes a permissions issues wthat stops AD logging

Code:

chown root:proxy /var/run/samba/winbindd_privileged
chmod 750 /var/run/samba/winbindd_privileged

To fix it on a reboot
vi /etc/init.d/winbind_priv.sh

Code:

#!/bin/sh
#set -x
WINBINDD_PRIVILEGED=/var/run/samba/winbindd_privileged

chmodgrp() {
    chgrp proxy $WINBINDD_PRIVILEGED || return 1
}

case "$1" in
    start)
        chmodgrp
        ;;
    restart|reload|force-reload)
        echo "Error: argument '$1' not supported" >&2
        exit 3
        ;;
    stop)
        ;;
    *)
        echo "Usage: $0 start|stop" >&2
        exit 3
        ;;
esac
#EOF

Then update the init system with
update-rc.d winbind_priv.sh start 21 2 3 4 5 .

So the answer is yes, still need to do this on latest LTS version of Ubuntu server.

LinkBack

Thread Tools

Search Thread

Squid Ubuntu 8.04 LTS

Thanks to monkeyx from:

Similar Threads

[Ubuntu] Squid and NTLM

The Ubuntu team is pleased to announce the beta release of Ubuntu 8.04 LTS

Squid Transparent

Squid authentication

Squid and RM proxies

Thread Information

Users Browsing this Thread

Posting Permissions