On 2/03/2015 4:55 a.m., Michele Bergonzoni wrote:
>> and again, a lot of software just doesn't bother to support proxies
>> these days, and it's only getting worse
>
> You're right, it's probably part of the shift from enterprise IT to
> consumer IT (a.k.a. "consumerization"). We too find it incre
On 2/03/2015 9:55 a.m., Eliezer Croitoru wrote:
> Hey Yuri,
>
> On 01/03/2015 20:17, Yuri Voinov wrote:
>> Normally you never use CONNECT method over HTTP ports. This is
>> prohibited by squid basic security requirements.
>
> The above statement is true only if the proxy admin prohibit this.
> A
Hold up there guys. yuri is answering a question that was not asked.
On 2/03/2015 6:24 a.m., Yuri Voinov wrote:
>
> 01.03.15 23:18, Julianne Bielski пишет:
>
>> I have an https client (not a browser) that normally connects to
>> a reverse proxy. When it needs to go through a forward proxy, it
On 01/03/2015 23:01, Yuri Voinov wrote:
Will can. When it will completely functional with interception bumping.
You don't need it in interception mode.
Eliezer
___
squid-users mailing list
squid-users@lists.squid-cache.org
http://lists.squid-cache.or
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
02.03.15 2:55, Eliezer Croitoru пишет:
> Hey Yuri,
>
> On 01/03/2015 20:17, Yuri Voinov wrote:
>> Normally you never use CONNECT method over HTTP ports. This is
>> prohibited by squid basic security requirements.
>
> The above statement is true on
Hey Yuri,
On 01/03/2015 20:17, Yuri Voinov wrote:
Normally you never use CONNECT method over HTTP ports. This is
prohibited by squid basic security requirements.
The above statement is true only if the proxy admin prohibit this.
A CONNECT method can be allowed and can be used for any purpose w
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
If it was possible, all of this simply would not be necessary:
http://wiki.squid-cache.org/ConfigExamples/Intercept#Traffic_Interception_capture_into_Squid
02.03.15 2:03, Antony Stone пишет:
> On Sunday 01 March 2015 at 19:17:22 (EU time), Yuri Voino
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
02.03.15 2:03, Antony Stone пишет:
> On Sunday 01 March 2015 at 19:17:22 (EU time), Yuri Voinov wrote:
>
>> 02.03.15 0:07, Julianne Bielski пишет:
>>>
>>> http_port 443 ssl-bump
>>> cert=/usr/local/squid3/etc/site_priv+pub.pem
>>
>> http_port 312
On Sunday 01 March 2015 at 19:17:22 (EU time), Yuri Voinov wrote:
> 02.03.15 0:07, Julianne Bielski пишет:
> >
> > http_port 443 ssl-bump
> > cert=/usr/local/squid3/etc/site_priv+pub.pem
>
> http_port 3128 intercept
> https_port 3129 intercept ssl-bump generate-host-certificates=on
> dynamic_cer
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
02.03.15 0:07, Julianne Bielski пишет:
> That's good to know.
>
> With a transparent interception SSL-bump enabled Squid, I suppose I
> do not have to explicitly configure anything in my https client,
> and that Squid must listen on the port my clie
That's good to know.
With a transparent interception SSL-bump enabled Squid, I suppose I do not
have to explicitly
configure anything in my https client, and that Squid must listen on the
port my client is trying to
connect to (443) and that my squid.conf file must look something like this:
http_
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
01.03.15 23:45, Julianne Bielski пишет:
> Normally my infrastructure looks like:
>
>
> client -- HTTP CONNECT (not encrypted) ---> proxy client --
> TCP tunnel ---> proxy --- TCP tunnel ---> reverse proxy client ---
> HTTPS application payloa
Normally my infrastructure looks like:
client -- HTTP CONNECT (not encrypted) ---> proxy
client -- TCP tunnel ---> proxy --- TCP tunnel ---> reverse proxy
client --- HTTPS application payload ---> reverse proxy
Now I need it to look like:
client HTTPS application payl
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
01.03.15 23:18, Julianne Bielski пишет:
>
> I have an https client (not a browser) that normally connects to a
> reverse proxy. When it needs to go through a forward proxy, it
> requests a CONNECT tunnel. I now have a requirement to also be able
> to
I have an https client (not a browser) that normally connects to a reverse
proxy. When it needs to go through a forward proxy, it requests a CONNECT
tunnel.
I now have a requirement to also be able to encrypt the connection between
my client and the forward proxy, and I think this is possible usin
> and again, a lot of software just doesn't bother to support
> proxies these days, and it's only getting worse
You're right, it's probably part of the shift from enterprise IT to consumer IT
(a.k.a. "consumerization"). We too find it increasingly difficult to support
HTTP proxies.
Best wishes,
Hey Sanke Eyes,
Can you provide the access logs output for these requests?
Thanks,
Eliezer
On 01/03/2015 23:31, snakeeyes wrote:
Hi ,
I have many account from same provider and I would like to use those
accounts as round robin and each request has different IP as possible
The issue is , I
Oh pretty old bug.
Thank you
Markus
"Amos Jeffries" wrote in message news:54f26815.4020...@treenet.co.nz...
On 1/03/2015 4:55 a.m., Markus Moeller wrote:
Hi,
I wonder about the total size variables st for squid logs
# st Received request size including HTTP headers. In the
# cas
Hello Amos Jeffries:
Thanks again , and i will deploy squid
3.5.2 in according to your advisement ,
and test QQ and other application in
the environment . if these are any error , i will catch access log
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
01.03.15 8:14, Amos Jeffries пишет:
> On 28/02/2015 9:59 a.m., Yuri Voinov wrote:
>> Hi gents.
>
>> Can I use log codes in custom error page and how to do this? Some
>> examples will be useful.
>
>> In details, interested in using adapt::
>> Just
Following this closely.
Sent from my BlackBerry®
-Original Message-
From: "snakeeyes"
Sender: "squid-users"
Date: Sun, 1 Mar 2015 13:31:08
To:
Subject: [squid-users] cache peer issue
___
squid-users mailing list
squid-users@lists.squid-cach
Hi ,
I have many account from same provider and I would like to use those
accounts as round robin and each request has different IP as possible
The issue is , I open whatismyipaddress.com
for some freshesh I can see my ip is rotating but after about 1 minute I
see my ip is stuck on same
22 matches
Mail list logo
