On 07/06/2016 10:07 PM, Alex Rousskov wrote:
On 07/06/2016 05:01 PM, Marcus Kool wrote:
On 07/06/2016 11:36 AM, Steve Hill wrote:
I'm using a transparent proxy and SSL-peek and have hit a problem with
an iOS app which seems to be doing broken things with the SNI.
The app is making an HTTPS c
On 07/06/2016 05:01 PM, Marcus Kool wrote:
> On 07/06/2016 11:36 AM, Steve Hill wrote:
>> I'm using a transparent proxy and SSL-peek and have hit a problem with
>> an iOS app which seems to be doing broken things with the SNI.
>>
>> The app is making an HTTPS connection to a server and presenting a
It looks like I'm probably going to get fobbed off by this site's
administrators. "It's our load balancer" — "Simply set up a bypass" etc.
Is there any straightforward way to disable the X-Forwarded-For header just
for requests to this one website? What would be implications of that be?
Dan
On 5
On 07/06/2016 11:36 AM, Steve Hill wrote:
I'm using a transparent proxy and SSL-peek and have hit a problem with an iOS
app which seems to be doing broken things with the SNI.
The app is making an HTTPS connection to a server and presenting an SNI with a wildcard
in it - i.e. "*.example.com
If the splice doesn’t solve the issue what would you expect squid to do?
Spilce equals routing…
The other solution which ufdbguard implements is probing the destination hosts.
If you want a solution I can try to see if it is possible but I cannot
guarantee that you or anyone will like it.
E
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
I am very seriously concerned about the issue CDN, because every day I
discover more and more problematic sites, namely in connection with the
CDN and HTTPS. For more than four Squid servers are experiencing these
problems in my network. And I stil
Hey Yuri,
I am not the "standards" guy but I do know that if something can be encoded
it can be "decoded".
There are special cases which needs special "spice" which sometimes is not
present here or there on the shelves.
To my disappointment and happiness there are very good products out there
whic
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
I know. Just asked. Since I am familiar with the standards.
07.07.2016 1:54, Eliezer Croitoru пишет:
> Hey Yuri,
>
> These two subjects are not related directly to each other but they
might have something in common.
> Squid expects clients connect
Hey Yuri,
These two subjects are not related directly to each other but they might have
something in common.
Squid expects clients connections to meet the basic RFC6066 section 3:
https://tools.ietf.org/html/rfc6066#section-3
Which states that a host name should be there and the legal characters
Hey Steve,
There are couple options to the issue and a bad request can happen if squid
transforms or modifies the request.
Did you tried to use basic debug sections output to verify if you are able to
"replicate" the request using a tiny script or curl?
I think that section 11 is the right one t
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Sounds familiar.
Do you experience occasional problems with CloudFlare sites?
06.07.2016 20:36, Steve Hill пишет:
>
> I'm using a transparent proxy and SSL-peek and have hit a problem with
an iOS app which seems to be doing broken things with th
I've been finding some problems with Skype when combined with TProxy and
HTTPS interception and wondered if anyone had seen this before:
Skype works so long as HTTPS interception is not performed and traffic
to TCP and UDP ports 1024-65535 is allowed directly out to the internet.
Enabling S
I'm using a transparent proxy and SSL-peek and have hit a problem with
an iOS app which seems to be doing broken things with the SNI.
The app is making an HTTPS connection to a server and presenting an SNI
with a wildcard in it - i.e. "*.example.com". I'm not sure if this
behaviour is actua
On Wednesday 06 July 2016 at 09:19:19, james82 wrote:
> can somebody kindly help me my question? thank you.
You said:
> If that was not a problem, so where is cache dictionaries squid proxy basic
> on?
I'm sorry, but I did not understand this.
Please let us know:
1. What is the current proble
can somebody kindly help me my question? thank you.
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/how-to-fix-proxy-squid-on-virtualmin-ubuntu-16-04-tp4678363p4678400.html
Sent from the Squid - Users mailing list archive at Nabble.com.
__
On 2016-07-06 10:48, Moataz Elmasry wrote:
Hi all,
I'm trying to create a kind of captive portal when only my domain and
google play are whitelisted and other addresses(http/https) are
forwarded to my domain.
All http requests are landing fine in the url_rewrite program, while
the https requests
16 matches
Mail list logo
