auth

Excluding IPs from HTTP auth when Apache is behind Varnish

Submitted by mig5 on Mon, 14/05/2012 - 11:52

Tags:

I had a situation whereby I had to protect a site with HTTP auth, but exclude a certain IP address or two from having to use HTTP auth (e.g loadtesting).

The problem was, the site was also behind a Varnish proxy. So I couldn't do 'Allow from (ip)' in the Apache settings, because the IP would always be the IP address of the Varnish server at this point.

And obviously, I couldn't 'Allow from (varnish ip)' because that's the same as not having any HTTP auth at all :)

PAM authentication against an LDAP server

Tags:

Rather brief notes on getting LDAP auth running on a Debian server

Install dependencies

apt-get install libpam-ldap libnss-ldap

Debconf

LDAP server Uniform Resource Identifier: ldaps://10.179.43.21/
Distinguished name of the search base: dc=badwolf,dc=greenbeedigital,dc=com,dc=au
LDAP version to use: 3
Does the LDAP database require login? No
Special LDAP privileges for root? No
Make the configuration file readable/writeable by its owner only? No
Make local root Database admin. No

Subscribe to RSS - auth