On 20/03/2016 12:50 a.m., Waitman Gobble wrote:
>
>
> On 2016-03-18 01:00, Amos Jeffries wrote:
>
>> On 18/03/2016 3:46 a.m., Waitman Gobble wrote:
>>
>>> When a script reference on an HTML page includes a parameter, the script
>>> does not appear to be cached when using squid in accel mode (htt
Hi,
1) Yes, you should see user@DOMAIN for kerberos authentication, but if you
use –r the @DOMAIN will be removed.
2) The client in EXTERNAL.COM needs to know where to find the
HTTP/@FATHER.COM principal. I think your trust is not fully setup. You
should see some cross domain TGTs
On 21/03/2016 11:27 p.m., IT HIA service wrote:
> Hi Amos,
>
> Some lines of the squid.conf,else which lines can be interesting to
> provide?
>
> thanks
>
>
> ---
> # CONFIG SQUID.CONF V3
>
Many thanks, ASAP i will try.
V
2016-03-21 20:01 GMT+01:00 Jason Haar :
> It's really not much more than what I first posted (I can't send my config
> - it's pretty specific to our site - you'll have to figure out the standard
> stuff yourself)
>
> So this will make a squid-3.5 server capable of
It's really not much more than what I first posted (I can't send my config
- it's pretty specific to our site - you'll have to figure out the standard
stuff yourself)
So this will make a squid-3.5 server capable of doing "transparent HTTPS"
without any fiddling with the transactions. Of course it
Hi all,
great, i'm just searching for this. Jason can you kindly post the whole
squid.conf?
Thanks
V
2016-03-20 22:29 GMT+01:00 Jason Haar :
> Hi there
>
> I'm wanting to use tls intercept to just log (well OK, and potentially
> block) HTTPS sites based on hostnames (from SNI), but have had probl
Yeah I know that, but there are issues with invoking peek: like the host
forgery checks suddenly kick in, and squid starts seeing SSL errors
(probably due to CentOS6 not supporting the newest standards that Chrome
uses) and then squid starts blocking things. That's why I'm sticking to
this simplest
On 21/03/2016 9:33 p.m., IT HIA service wrote:
>
>
> Hi everybody,
> We make authentification with ncsa (username and password). But in
> access.log, we don't see on each line the username. The Ip adress of the
> computer is present. But the username appears only with CONNECT ...:443.
> For a G
Hello Markus,
firt of all thank you for your reply, today i'm having a strange issue.
KID1 and KID2 started to autenticate with kerberos correclty without any modification ...
This is so strange, but i'm very happy, so i started others configurations, but i have 2 more problems:
1)
On m
Hi everybody,
We make authentification with ncsa (username and password). But in
access.log, we don't see on each line the username. The Ip adress of the
computer is present. But the username appears only with CONNECT ...:443.
For a GET, the username is not written. In this example, "dupont" is
On 21/03/2016 10:29 a.m., Jason Haar wrote:
> Hi there
>
> I'm wanting to use tls intercept to just log (well OK, and potentially
> block) HTTPS sites based on hostnames (from SNI), but have had problems
> even in peek-and-splice mode. So I'm willing to compromise and instead just
> intercept that
11 matches
Mail list logo
