all users on our school district network connect to the internet via a
6.5/3.8 bm server with surfcontrol that does NOT have proxy
authentication enabled. (the server also is our firewall with
filtering enabled).

things work nicely, but don't understand why one would or should or
would not or should not enable proxy authentication. if enabled, would
users then have to 'login' to the bm server before browsing the web?