21.01.2019 22:29, Alex Rousskov пишет:
On 1/21/19 9:08 AM, Dmitry Melekhov wrote:
Your Squid (or some helper) appears to be adding an
"-/...GETmyip=-myport=0" suffix to the crt.sectigo.com URL,
resulting in a 404 response from that server.
Is there any reasons squid sends :::ff
Hi All,
I have an ecap adapter that amongst other things tracks response size. This
works fine for HTTP and ssl-bump'd HTTPS but not for TCP_TUNNEL responses as
they are not seen by the ecap adapter.
I understand that in most cases adaptation of a tunnelled HTTPS response is
pointless as it w
On 1/21/19 9:08 AM, Dmitry Melekhov wrote:
>> Your Squid (or some helper) appears to be adding an
>> "-/...GETmyip=-myport=0" suffix to the crt.sectigo.com URL,
>> resulting in a 404 response from that server.
> Is there any reasons squid sends :::::::
> to red
On 1/21/19 5:22 AM, Luca Savarino wrote:
> Attached is a patch which seems to fix the issue.
Glad you have a fix that works for you, but this mailing list is not the
right place for patch reviews. If you want to submit your changes to the
Squid project, I suggest creating a GitHub pull request. T
On 1/21/19 3:35 AM, FredB wrote:
> I'm playing with Squid4 and e2guardian as ICAP server.
>
> I'm seeing something I misunderstand, when a SSL website is blocked
> e2guardian returns a encapsulated "HTTP/1.1 403 Forbidden" header this
> part seems good to me with an encrypted website a denied or
21.01.2019 14:30, Dmitry Melekhov пишет:
Your Squid (or some helper) appears to be adding an
"-/...GETmyip=-myport=0" suffix to the crt.sectigo.com URL,
resulting in a 404 response from that server.
Yes, I suspected this, there is no helper which can add this, as
far as
I know
These man
Hello Alex,
Thank you for your help. Attached is a patch which seems to fix
the issue. Does it seem correct to you ?
Regards,
Luca
On 1/17/19 5:39 PM, Alex Rousskov wrote:
On 1/17/19 9:13 AM, Luca Savarino wrote:
WARNING: ip_list ACL is used in context without an ALE
state. Ass
Hello all,
I'm playing with Squid4 and e2guardian as ICAP server.
I'm seeing something I misunderstand, when a SSL website is blocked
e2guardian returns a encapsulated "HTTP/1.1 403 Forbidden" header this
part seems good to me with an encrypted website a denied or redirection
page can't be ad
21.01.2019 8:39, Dmitry Melekhov пишет:
18.01.2019 21:08, Amos Jeffries пишет:
On 19/01/19 4:31 am, Alex Rousskov wrote:
On 1/18/19 4:35 AM, Dmitry Melekhov wrote:
17.01.2019 21:02, Alex Rousskov пишет:
On 1/16/19 10:30 PM, Dmitry Melekhov wrote:
2019/01/17 09:18:21 kid1| ERROR: negotiating
On 21/01/19 11:02 am, Eliezer Croitoru wrote:
> OK so from the real world:
>
> What's the best way to ban Let's encrypt based certificates? or
> whitelist a very narrow list of Root and Intermediates CA?
>
Besides what Alex has answered to your first question. I think the
simpler approach would
On 1/20/19 11:02 PM, Eliezer Croitoru wrote:
The issue is that these sites are encrypted but do not offer any way of
assuring real ISO and couple other compatibilities of the ORG.
For a simple home user it’s fine most of the time but for some it’s not.
Just out of curiosity, could you better
On 21/01/19 11:15 am, Eliezer Croitoru wrote:
> You probably meant 4.5...
> http://www1.ngtech.co.il/repo/centos/7/x86_64/squid-4.5-1.el7.x86_64.rpm
>
Time travel ...
> -Original Message-
> From: Amos Jeffries
> Sent: Wednesday, January 2, 2019 12:01
... back when 4.4 was all you had.
12 matches
Mail list logo
