On 13/09/18 12:54 PM, Alex Rousskov wrote:
> On 09/12/2018 03:47 PM, squid wrote:
>
>> We are using squid as reverse proxy and we have disabled SSLv3 :
>
>> https_port XXX.XXX.XXX.XXX:443 accel defaultsite=www.example.com
>> vhost cert=/etc/cert.pem key=/etc/privkey.pem
>> options=NO_SSLv
> I am afraid you do not. You are probably missing the fact that, at each step,
> the rules after the matching applicable rule are not checked.
> Also, you seem to insert some implicit peeking rules that are never there.
> Finally, there may be some confusion regarding how multiple ACLs on one
> li
On 09/12/2018 03:47 PM, sq...@buglecreek.com wrote:
> We are using squid as reverse proxy and we have disabled SSLv3 :
> https_port XXX.XXX.XXX.XXX:443 accel defaultsite=www.example.com
> vhost cert=/etc/cert.pem key=/etc/privkey.pem
> options=NO_SSLv2,NO_SSLv3,SINGLE_DH_USE,CIPHER_SERVER
I asked this some time ago and am bringing it up again to see if there are any
suggestions since we haven't been able to fix it.
We are using squid as reverse proxy and we have disabled SSLv3 :
https_port XXX.XXX.XXX.XXX:443 accel defaultsite=www.example.com vhost
cert=/etc/cert.pem key=/et
On 09/12/2018 08:28 AM, Julian Perconti wrote:
> Please, let me know if I understand why those cfg are equals
I am afraid you do not. You are probably missing the fact that, at each
step, the rules after the matching applicable rule are not checked.
Also, you seem to insert some implicit peeking
On 13/09/18 2:16 AM, Mujtaba Hassan Madani wrote:
> Dear Squid Team,
>
> how does content provider prevent it from been cached while passing
> through squid proxy it's by a copy right law
No. Contents which can be transferred through a proxy are implicitly
licensed for re-distribution.
Le
> > So, in a brief the confi is:
> >
> > ssl_bump peek step1 all
> > ssl_bump peek step2 noBumpSites
> > ssl_bump stare step2 all
>
> ... which should be equivalent to an even simpler config:
>
> ssl_bump peek step1
> ssl_bump peek noBumpSites
> ssl_bump stare all
Yes, i've tested and squ
Dear Squid Team,
how does content provider prevent it from been cached while passing
through squid proxy it's by a copy right law or some encryption is implemented
in the traffic ? and where can I find the contents that been cached on my squid
proxy ?
thanks for your assistant
Mujtaba H
On 12/09/18 7:17 AM, morteza1131 wrote:
> Tanks for your response.
> I totally understand how iptables work.
Then you should already know very well the answers to all these
questions you ask, including why Squid cannot do what you want. You
attempting to troll?
> are you familiar with snort!?
I
