Jay Lagare

LDAP Authentication For Squid

By Jay Lagare on Friday, February 8, 2008

One of the things you want to do as you integrate your systems would be to have them authenticate from a common user base. That user base is usually an LDAP source, in my case Microsoft Active Directory (don’t say anything!!!). One of the systems you would want to use the common user base is your web proxy, Squid in my case. Here is how to integrate the two. It’s quite simple actually though, as usual, LDAP gave me a bit of a hard time.

First you need to configure Squid to use LDAP. Just add the following in your squid.conf:

auth_param basic program /usr/lib/squid/squid_ldap_auth -P -R -b “dc=your,dc=domain” -D “cn=user,cn=Users,dc=your,dc=domain” -w “password” -f “(&(objectClass=person)(sAMAccountName=%s))” yourldapserver

If you’re encountering problems add the -d parameter at the end and do a tail -f on /var/log/squid/cache.log Now that Squid can authenticate using LDAP, just add your ACLs in squid.conf:

acl youracl1 proxy_auth “/path/to/userlist”
http_access allow youracl1

That’s it!

Uncategorized

How To Verify The Lug Width Of A Watch

By Jay Lagare on Thursday, February 7, 2008

Get two 9mm casings and line them up with the lugs. Voila! The lug width of the watch in question is indeed 18mm :D

General

Rage

By Jay Lagare on Wednesday, February 6, 2008

There are some people who really infuriate you. Like this one who makes you almost want to bash her face in. She talks like she knows it all and she won’t hear of anything you say. In fact, she’s insultingly dismissive when you try to talk to her.

But I did get to talk to her and it was surreal. She knows that a RAID server is about striping (all except RAID 1) and mirroring (RAID 1) but how could she think that RAID has something to do with her PC’s disk being mirrored to the RAID server? I tried to interrupt her and tell her that she was misinformed. Tried to tell her how it actually works. But she won’t have any of it. She even told me I wasn’t talking like an IT person. WTF?

And then she goes on about RAID being generally slower than non-RAID disks and that she shouldn’t be using it because it will slow her work down. To set the record straight, RAID 0 is faster. The other RAID levels are indeed slower but that because it’s the price you pay for data integrity. And no, your work is not slowed down because of using a RAID drive for backing-up. Not even if you wait for your backing-up to finish before going back to work. Sorry, you can’t use that as an excuse.

And finally she goes “Now you’re surprised at my IT knowledge.” I was incredulous. Yes, I’m surprised alright. Surprised at how someone could possibly get it oh so wrong. I mean really, how could you? Talk about the difference between knowing and understanding. As if that’s not bad enough, she goes on “I don’t even have a master’s degree.” Where the heck did that come from?!?

I felt like I was talking to a crazed spinster. Oh wait a minute! I was!

And I’m sure I’m not the only one who feels this way. If someone told you in front of other managers: “I’m willing to work with you on this, the question is do you?” Wouldn’t you feel the same? You would, right?

General

Cloverfield

By Jay Lagare on Sunday, February 3, 2008

Cloverfield is Godzilla meets The Blair Witch Project. Essentially Godzilla’s attack on New York from the perspective of a group of friends or more accurately from the perspective of their old-model home video camera that severely lacks a shake-reduction/motion-stabilizer feature. Could have been an interesting story but the first-person perspective approach was dizzying and I don’t mean in a good way. Half of the time my eyes were closed trying to recover my sense. I should have listened to Eeya’s recommendation not to watch it. So maybe listen to mine: Don’t watch it if you are motion sickness prone!

Rating: 1/5

General

Rufo’s

By Jay Lagare on Sunday, February 3, 2008

Tried Rufo’s early this morning (like 2AM early). Actually I’ve tried it almost exactly a week ago at Makati. That time, I ordered (what else?) tapsilog, their signature dish. Unusually, the tapa comes with sauce. In fact there’s more sauce than meat. They claim that the sauce alone is already viand. Frankly, I didn’t expect tapa to come with sauce since I’m used more to Rodic’s and Tapa King’s tapa which are more traditional. But I have to admit that it does taste nice. I like Rodic’s tapa better though. Anyway, this morning, I ordered embutido then switched to liempo because both Alex and Aby ordered it (shades of gluttony and envy in one sitting, beat that!) . But no regrets since it’s one of the best liempo I’ve had. I definitely want to try the other items on their menu.

UPDATE: Their embutido sucks.