Hello all,
Is the use of dynamic_cert_mem_cache_size=SIZE on the http_port
directive any different with and without using sslcrtd_program?
Should there be a specific relationship between the amount of memory or
disk configured for the two?
On a slight tangent, what performance improvement could b
- Original Message -
From: Amos Jeffries
>
> You could try with a newer Squid version since the bio.cc code might be
> making something else happen in 3.5.23. If that still fails the 4.0 beta
> has different logic and far better debug info in this area.
I tried 3.5.23 and I finally g
On 23/01/2017 4:34 a.m., boruc wrote:
> So basically eCAP will allow me to modify any pages that is in response? What
> about pages that are gzipped? Would I have to decode, modify it as I want
> and encode?
Yes you would. Squid just passes the data it gets.
> If you could write a "lifecycle" of
On 23/01/2017 2:49 a.m., Alexander wrote:
> As far as I remember, I have tried both options, REDIRECT and TPROXY, but
> TPROXY is the preferred one for us. I will try one more time on Monday.
> However, I suppose that something else prevents squid from working properly.
> Maybe on of sysctls, like
Hi
I'm using SSL transparent method :
https_port 0.0.0.0:53695 intercept disable-pmtu-discovery=transparent
name=MyPortNameID22 ssl-bump generate-host-certificates=on
dynamic_cert_mem_cache_size=4MB
cert=/etc/squid3/ssl/cb623e9bfc65772f68b84393604cd6ea.dyn
sslproxy_foreign_intermediate_certs
So basically eCAP will allow me to modify any pages that is in response? What
about pages that are gzipped? Would I have to decode, modify it as I want
and encode? If you could write a "lifecycle" of object that is going to be
cached, what would it look like?
HTTP Request -> HTTP Response -> Conte
As far as I remember, I have tried both options, REDIRECT and TPROXY, but
TPROXY is the preferred one for us. I will try one more time on Monday.
However, I suppose that something else prevents squid from working properly.
Maybe on of sysctls, like net.ipv4.ip_nonlocal_bind, will do the trick.
-
An example for a helper in python.
You will need to remove the whole memcache stuff and this is the basic
structure:
http://wiki.squid-cache.org/EliezerCroitoru/SessionHelper/Python
http://ngtech.co.il/lmgtfy/
Linux System Administrator
Mobile: +972-5-28704261
Email: elie...@ngtech.co.il
Can I use a python script as external acl helper ? I have tested it quickly
by adding these lines to squid.conf:
external_acl_type python %SRC /usr/bin/python ~/rekt.py
acl external_acl_helpers external python
http_access allow external_acl_helpers
And this is rekt.py:
#!/usr/bin/env python
prin
