From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id C9C121381F3 for ; Wed, 22 May 2013 19:08:28 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id CDE2EE0821; Wed, 22 May 2013 19:08:19 +0000 (UTC) Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.17.9]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 4130DE07F2 for ; Wed, 22 May 2013 19:08:18 +0000 (UTC) Received: from bitch ([46.78.35.247]) by mrelayeu.kundenserver.de (node=mrbap3) with ESMTP (Nemesis) id 0MekDA-1UqI6S2Xiy-00OGhu; Wed, 22 May 2013 21:08:16 +0200 Received: from chiefwiggum ([192.168.23.1]:39831 helo=chiefwiggum.localnet) by bitch with esmtpsa (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32) (Exim 4.76) (envelope-from ) id 1UfEOS-00019o-2m for gentoo-user@lists.gentoo.org; Wed, 22 May 2013 21:08:15 +0200 From: Heiko To: gentoo-user@lists.gentoo.org Date: Wed, 22 May 2013 21:08:09 +0200 Message-ID: <5273078.cFY61D756O@chiefwiggum> User-Agent: KMail/4.10.2 (Linux/3.8.13-gentoo; KDE/4.10.2; x86_64; ; ) In-Reply-To: References: Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Transfer-Encoding: 7Bit Content-Type: text/plain; charset="us-ascii" X-SA-Exim-Connect-IP: 192.168.23.1 X-SA-Exim-Mail-From: mails@rabuju.com Subject: Re: [gentoo-user] Lightweight & Simple Proxy that supports upstream authentication X-SA-Exim-Version: 4.2.1 (built Sun, 08 Jan 2012 02:45:44 +0000) X-SA-Exim-Scanned: No (on bitch); Unknown failure X-Provags-ID: V02:K0:eMRLkopatrnMkjlf+/CTEeoTkTbZWIVWiMNkB/3hd6G Kvxhx2W5I8laHMm6Neb7ICSMSipcw9ogygMktslMGoQbi6DLpF qgB9sA0r+Qw1uppl1FbNYjRHTeMAJtwUEZ0sF765EFUzVIQnnS CIb/aYy/8Ayl3WDcIjzG+2zsG+15tHGXM5B0uhb7/D7HcQF6hF ksuHXjOYKhitsbYuHv9qeTXqv3meiS43eYzw60cM8k8+uKHryl Y+9s6ht7nz3vWfGJr1qpor+zMFO8lSBERArUSF59ngEZ9a1jPV B8Eb0rRIznXJkpp5CDMNWGgUxK0PnIk71Vz1Uh0tCb3eI93dQ= = X-Archives-Salt: c3a93f6f-182b-486e-a00a-c7a503c15260 X-Archives-Hash: c8672bc10f3222cd540ef9584c467381 > On Monday 20 May 2013 11:31:31 Pandu Poluan wrote: > > Hello, > I'm looking for a simple HTTP+FTP proxy that supports upstream authentication. > The reason is that we (that is, my employer) have a server that requires Internet access for its setup, but for some reason* my employer does not want to give the contractors a login for the corporate proxy. > I'm planning of setting up a simple proxy to authenticate against the corporate proxy using one of my credentials, and have the contractor use this simple proxy instead of the corporate one. > I think Squid can do that... but is there a simpler solution? I truly don't need caching, inter-proxy coordination, or other exotic stuff. Just a way to allow other people to authenticate against the corporate proxy using my credentials, but without giving my credentials away. > (Of course the simple proxy will be installed on a totally separate system, one under my full control and nobody else's) cntlm is what you looking for http://cntlm.sourceforge.net/ It's available for linux and windows. Depending on your needs. I'm using it for years and it's doing really well. It needs a little time to create a config file. But it's really powerful. It's even possible to provide your contractors a config file within your credentials. hint: see the -M option or just use it with interactive prompt (-I option). heiko