Hi!
I'm update squid to 3.5.9, but nothing change.
I'm use config with
...
ssl_bump stare all
ssl_bump bump all
...
When I'm use ssl bump, squid not send certificate chain.
Info from s_client
with ssl_bump
[sas@file01 ~]$ openssl s_client -connect google.ru:443
CONNECTED(0003)
depth=0
Hi amos
I have 10 K
I DIVIDED them to 5 files
Each file has 2 K
And each file has its own cache.log file /visible name etc
The question im asking is :
Do I need to put the directive in cpu_affinity_map process_numbers=1,2,3
,4,5cores=1,2,3,4,5
In squid.conf ??
Or I need to go to each s
On 27/09/2015 9:56 p.m., Ahmad Alzaeem wrote:
> Hi Amos ,
> I think it got it woring with multi instance
> I let each instance load some ports and each instance has its only kid1
> process.
>
> But im asking now where to do the cpu mapping ?
>
> Is it done in squid.conf ?
>
> Or for each separ
Correct. My apologies.
It's not HTTP that is blocked. Not sure what is at this stage but thanks
for the help.
On 28 September 2015 at 09:33, Amos Jeffries wrote:
> On 28/09/2015 9:12 a.m., Yuri Voinov wrote:
> >
> > It not seems blocked.
> >
> > Blocked URL has TCP_DENIED tag.
> >
>
> Unless th
On 28/09/2015 9:12 a.m., Yuri Voinov wrote:
>
> It not seems blocked.
>
> Blocked URL has TCP_DENIED tag.
>
Unless the media portion is not even using HTTP. The problem would then
be somewhere else outside Squid.
> 28.09.15 1:54, Henry McLaughlin пишет:
>>>
>>> On 27 September 2015 at 17:07,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
It not seems blocked.
Blocked URL has TCP_DENIED tag.
28.09.15 1:54, Henry McLaughlin пишет:
>>
>> On 27 September 2015 at 17:07, Henry McLaughlin
>> wrote:
>>
>>> I am having problems using a radio streaming application on my
phone. The
>>> pho
>
> On 27 September 2015 at 17:07, Henry McLaughlin
> wrote:
>
>> I am having problems using a radio streaming application on my phone. The
>> phone connection is routed via squid proxy server. If I by pass squid then
>> the radio application works. The application is TuneIn radio (tunein.com).
>>
On 09/27/2015 06:32 AM, Eliezer Croitoru wrote:
> I am considering what to block.
> When I am testing for urls and methods I have discovered that not all
> requests [...] can contain unwanted content.
...
> If the issue is security then it's one thing but in most cases it is not
> required.
...
>
I am considering what to block.
When I am testing for urls and methods I have discovered that not all
requests are supported by the browsers and not all of the can contain
unwanted content.
For example a HEAD request cannot contain any body and there might not
to be filtered.
A PUT request cann
Hey Xen,
I am not really a proxy expert and I am not really such a great security
guy but both you and Amos are right.
There are cases which revealing an internal IP address is a bad
practice. Also there are other ways to identify the internal host which
causes issues.
In the specific case of
Again, impressed by your knowledge. But I'm not really arguing against
your knowledge. It is basically a principle choice to /call/ one thing
security and the other privacy based on the impression or experience that
the one thing provides actual defenses or benefits in certain common
scenario's
Forgot to mention im using 3.5.9 squid version
thanks
-Original Message-
From: squid-users [mailto:squid-users-boun...@lists.squid-cache.org] On Behalf
Of Ahmad Alzaeem
Sent: Sunday, September 27, 2015 11:57 AM
To: 'Amos Jeffries'
Cc: squid-users@lists.squid-cache.org
Subject: Re: [squid
Hi Amos ,
I think it got it woring with multi instance
I let each instance load some ports and each instance has its only kid1 process.
But im asking now where to do the cpu mapping ?
Is it done in squid.conf ?
Or for each separated instance conf file ?
Is my formula below correct ?
cpu_affi
13 matches
Mail list logo
