On 23/07/2015 2:41 a.m., Alex Wu wrote:
> We do not use cache-peer. I thought cache-peer is for connecting another
> squid-like proxy server.
Historically yes. In Squid-3 it is for connecting to any specific
upstream server.
The correct way to send traffic over TLS/SSL to an intranet server is
On 30/07/2015 9:21 p.m., Amos Jeffries wrote:
> On 30/07/2015 8:08 p.m., FredB wrote:
>>
>>>
>>> Well. Yes an 3.4 has a serious CVE that needs releasing. So it will
>>> be a
>>> thing this weekend.
>>>
>>> But no other bug fixes in the past few months qualify as security
>>> issues. So yes you need
There is a project for icap that does exactly what you want. This is like a
L8 filter, meanwhile dns is L5.
The higher, the better
On Jul 31, 2015 5:20 PM, "Amos Jeffries" wrote:
> On 1/08/2015 8:49 a.m., Stanford Prescott wrote:
> > Hi Amos. I wanted to try out the "ssl-bump splice" to send tra
On 1/08/2015 8:49 a.m., Stanford Prescott wrote:
> Hi Amos. I wanted to try out the "ssl-bump splice" to send traffic to a
> peer found in the recent snapshots for 3.5.6/7 to block Google images. I
> compiled configured and installed the latest 3.5 snapshot and added the
> directives you listed abo
On 07/31/2015 08:34 AM, Dan Purgert wrote:
Quoting Eliezer Croitoru :
I managed to make it work!
I am using ubuntu 14.04.2 with openLDAP and phpldapadmin.
I have changed my server to look like yours and it still didn't work.
So what I did was this: I changed the command to:
/usr/lib/squid3/ext_
Hi Amos. I wanted to try out the "ssl-bump splice" to send traffic to a
peer found in the recent snapshots for 3.5.6/7 to block Google images. I
compiled configured and installed the latest 3.5 snapshot and added the
directives you listed above to squid.conf but I am not sure I got them
right.
On 1/08/2015 4:06 a.m., Josip Makarevic wrote:
> Marcus, tnx for your info.
> OS is centos 6 w kernel 2.6.32-504.30.3.el6.x86_64
> Yes, cpu_affinity_map is good and with 6 instances there is load only on
> first 6 cores and the server is 12 core, 24 HT
Then I suspect that mutex and locking will b
Thanks again. That’s what I was looking to clarify!
-Original Message-
From: squid-users [mailto:squid-users-boun...@lists.squid-cache.org] On Behalf
Of Amos Jeffries
Sent: Friday, July 31, 2015 12:32 PM
To: squid-users@lists.squid-cache.org
Subject: Re: [squid-users] forward proxy - man
On 31/07/2015 8:55 p.m., Kinkie wrote:
> On Thu, Jul 30, 2015 at 11:57 PM, Berkes, David
> wrote:
>
>>
>> Just a basic question. I have a 3.5.0.4 forward proxy setup with basic
>> authentication for my MDM proxy (iphones). All iphones are set with the
>> global proxy and identical user-name/pas
Marcus, tnx for your info.
OS is centos 6 w kernel 2.6.32-504.30.3.el6.x86_64
Yes, cpu_affinity_map is good and with 6 instances there is load only on
first 6 cores and the server is 12 core, 24 HT
each instance is bound to 1 core. Instance 1 = core1, instance 2 = core 2
and so on so that should n
Hi guys, about the prior problem, I solved it, I was compiled with option
'--disable-ident-acl', thats why it was not running.
now I have another problem, my *ident acl* itsn't working, my purpose it's
enable access to cachemgr just to user JORGELEY, here is my conf:
auth_param basic program /etc/
Not near my gear and notes, but will get you what I have later.
On Jul 31, 2015 10:31 AM, "Eliezer Croitoru" wrote:
> On 31/07/2015 15:37, brendan kearney wrote:
>
>> Pretty sure memberOf is an overlay you have to enable in openldap
>>
>
> I have tried to use this:
>
> http://www.schenkels.nl/201
On 31/07/2015 15:37, brendan kearney wrote:
Pretty sure memberOf is an overlay you have to enable in openldap
I have tried to use this:
http://www.schenkels.nl/2013/03/how-to-setup-openldap-with-memberof-overlay-ubuntu-12-04/
But it doesn't mention that you need to put the file in the scheme
Hi guys.
ident ACL was discontinued on Squid 3.5.6???
I didn't found it in compilation options and it's unknown by squid.conf
Any help?
--
___
squid-users mailing list
squid-users@lists.squid-cache.org
http://lists.squid-cache.org/listinfo/squid-users
osq_lock is used in the kenel for the implementation of a mutex.
It is not clear which mutex so we can only guess.
Which version of the kernel and distro do you use?
Since mutexes are used by Squid SMP, I suggest to switch for now to Squid
non-SMP.
What is the value of cpu_affinity_map in all
Pretty sure memberOf is an overlay you have to enable in openldap
On Jul 31, 2015 8:34 AM, "Dan Purgert" wrote:
Quoting Eliezer Croitoru :
I managed to make it work!
> I am using ubuntu 14.04.2 with openLDAP and phpldapadmin.
> I have changed my server to look like yours and it still didn't work
Quoting Eliezer Croitoru :
I managed to make it work!
I am using ubuntu 14.04.2 with openLDAP and phpldapadmin.
I have changed my server to look like yours and it still didn't work.
So what I did was this: I changed the command to:
/usr/lib/squid3/ext_ldap_group_acl -d -b "dc=ngtech,dc=local" -D
I managed to make it work!
I am using ubuntu 14.04.2 with openLDAP and phpldapadmin.
I have changed my server to look like yours and it still didn't work.
So what I did was this: I changed the command to:
/usr/lib/squid3/ext_ldap_group_acl -d -b "dc=ngtech,dc=local" -D
"cn=admin,dc=ngtech,dc=loca
Quoting Eliezer Croitoru :
I wanted to test the ext_ldap_group_acl so I created a ldap domain.
The command I am testing is:
/usr/lib/squid3/ext_ldap_group_acl -b "DC=ngtech,DC=local" -D
"CN=admin,DC=ngtech,DC=local" -w "password" -f
"(&(objectclass=person)(sAMAccountName=%v)(memberof=CN=%a,D
Regarding your filter:
- I think it should be %u instead of %v for user
- never heard of %a, usage says %v, man page says %g for group
___
squid-users mailing list
squid-users@lists.squid-cache.org
http://lists.squid-cache.org/listinfo/squid-users
On Thu, Jul 30, 2015 at 11:57 PM, Berkes, David
wrote:
>
> Just a basic question. I have a 3.5.0.4 forward proxy setup with basic
> authentication for my MDM proxy (iphones). All iphones are set with the
> global proxy and identical user-name/password. They will be on an LTE
> network and will
21 matches
Mail list logo
