Re: [squid-users] possible SYN flooding on port 80. Sending cookies.

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 11/05/2014 07:40 AM, Ahmed Allzaeem wrote: > I just want to make sure no limitation in kernel and will try to > increase cpus on the Vm server Hey Ahmed, Kernel is not squid related issue so you first ask in other places. Since you have asked you

Re: [squid-users] Squid 3.5.0.2 beta is available

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hey Odhiambo, The cut might be pretty important. For example I would like to get the full build environmental variables etc. If you can please provide all the relevant details about the build node and procedure to ensure we are looking at the same pic

[squid-users] assertion failed: client_side.cc:1515: "connIsUsable(http->getConn())

Hi folks I think I raised this crash a few months ago, but I can’t locate the thread now, so I’m starting a new one now that I actually have a gdb backtrace to present. I suspect it’s to do with one of our external ACLs (we use a few), but the backtrace I’ve attached is most undecipherable f

Re: [squid-users] Squid 3.5.0.2 beta is available

tis 2014-11-04 klockan 23:05 +0300 skrev Odhiambo Washington: > > `/usr/home/wash/Tools/Squid/3.5/squid-3.5.0.2/src' gmake[3]: > *** No > > rule to make target `/usp/include/c++/4.2/vector', needed by > > `DiskIO/Blocking/BlockingIOStrategy.o'. Stop. What is /usp

Re: [squid-users] Squid 3.5.0.2 beta is available

How should that be fixed? On 4 November 2014 21:27, Amos Jeffries wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > On 5/11/2014 4:46 a.m., Odhiambo Washington wrote: > > On 4 November 2014 07:45, Amos Jeffries > > wrote: > > > >> -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 > >> >

[squid-users] possible SYN flooding on port 80. Sending cookies.

Hi , I got new logs with squid-squid kernel: possible SYN flooding on port 80. Sending cookies. Then server is about to be killing the browsing Im asking wt should I do in kernel config to tun it so that it handle that traffic ? I just want to make sure no limitation in kernel and wil

Re: [squid-users] Squid 3.5.0.2 beta is available

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 5/11/2014 4:46 a.m., Odhiambo Washington wrote: > On 4 November 2014 07:45, Amos Jeffries > wrote: > >> -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 >> >> The Squid Software Foundation is very pleased to announce the >> availability of the Squi

Re: [squid-users] Squid 3.5.0.2 beta is available

On 4 November 2014 07:45, Amos Jeffries wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > The Squid Software Foundation is very pleased to announce the > availability of the Squid-3.5.0.2 beta release! > > 3.5.0.1 beta failed to compile successfully so I left it at that. 3.5.0.2 has a

Re: [squid-users] Squid 3.5.0.2 beta is available

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 5/11/2014 1:32 a.m., Marcus Kool wrote: > The release notes have a link for ecap documentation that points > to http://wiki.squid-cache.org/Features/BLAH which does not exist. Oops, that should be pointing at

Re: [squid-users] RFC2616 headers in bumped requests

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 4/11/2014 11:17 p.m., Steve Hill wrote: > > Squid (correctly) inserts Via and X-Forwarded-For headers into > requests that it is proxying. However, in the case of encrypted > traffic, the server and client are expecting the traffic to reach > the

Re: [squid-users] Squid 3.5.0.2 beta is available

The release notes have a link for ecap documentation that points to http://wiki.squid-cache.org/Features/BLAH which does not exist. The squid wiki refers to an old version of ecap so I tried searching for "ecap" on the home page but it throws an error: Not Found The requested URL /cgi-bin/swish-

Re: [squid-users] Correctly implementing peak-splice

On Tue, 2014-11-04 at 12:32 +0200, Christos Tsantilas wrote: > On 11/03/2014 03:00 PM, James Lay wrote: > > > > Thanks Christos, > > > > So here's where I'm at...my full test config below: > > .. > >.. > > > > logformat common %>a %[ui %[un [%tl] "%rm %ru HTTP/%rv" %>Hs % > Sh %ssl::>cert_s

Re: [squid-users] Correctly implementing peak-splice

On 11/03/2014 03:00 PM, James Lay wrote: Thanks Christos, So here's where I'm at...my full test config below: .. .. logformat common %>a %[ui %[un [%tl] "%rm %ru HTTP/%rv" %>Hs %cert_subject The %ssl::>cert_subject will print the subject of the client certificate, if there is any. I

Re: [squid-users] SSL bump fails accessing .gov.uk servers

On 31/10/14 20:03, Dieter Bloms wrote: > but when the server is broken, it will not work. > Have a look at: > > https://www.ssllabs.com/ssltest/analyze.html?d=www.taxdisc.service.gov.uk > >> It works correctly when FireFox connects directly to the web server >> rather than going through the prox

[squid-users] RFC2616 headers in bumped requests

Squid (correctly) inserts Via and X-Forwarded-For headers into requests that it is proxying. However, in the case of encrypted traffic, the server and client are expecting the traffic to reach the other end as-is, since usually this could not be intercepted. With SSL bumped requests this is no l

Re: [squid-users] Squid, Kerberos and FireFox (Was: Re: leaking memory in squid 3.4.8 and 3.4.7.)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Amos Jeffries wrote: > On 4/11/2014 9:10 p.m., Victor Sudakov wrote: > > Now available at > > https://bitbucket.org/victor_sudakov/faq/src/tip/FAQ/squid_kerberos.txt [dd] > > If you are going to publish this please use either the official > domains

Re: [squid-users] Squid, Kerberos and FireFox (Was: Re: leaking memory in squid 3.4.8 and 3.4.7.)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 4/11/2014 9:10 p.m., Victor Sudakov wrote: > Now available at > https://bitbucket.org/victor_sudakov/faq/src/tip/FAQ/squid_kerberos.txt > > Victor Sudakov wrote: >> Colleagues, >> >> I have created a howto in Russian about squid and Kerberos proxy

Re: [squid-users] Squid, Kerberos and FireFox (Was: Re: leaking memory in squid 3.4.8 and 3.4.7.)

Now available at https://bitbucket.org/victor_sudakov/faq/src/tip/FAQ/squid_kerberos.txt Victor Sudakov wrote: > Colleagues, > > I have created a howto in Russian about squid and Kerberos proxy > authentication, addressing also the two problems I personally > encountered while setting all the st