Our whitelists are separate files. The files were still in the /etc/squid
directory, but the configs were gone.
We actually go old school and use webmin to manage the squid server and it
showed an upgrade.
I am thinking the squid.conf got overwritten, which caused our issue.
Alan Long | Senior
is a known issue.
Also our delay pool had to be recreated as well.
Alan Long | Senior Network Engineer I
[A blue and white logo Description automatically generated with medium
confidence]
Web www.vesta.io<http://www.vesta.io/>
Notice: This e-mail message and any attachments are the pr
On Wed, Jan 20, 2016 at 3:34 AM, Sreenath BH wrote:
>
> We are using acl helper to authenticate users. Squid allows a template
> file that will be used to send a custom error message when the ACL
> sends an "ERR" string back to squid.
>
> In our case the acl helper contacts another web service for
This might be the same crash reported in another thread, or a new one.
I noticed it after upgrading from 3.3.11 to 3.5.6.
I'm using negotiate authentication (kerberos).
Auth settings:
auth_param negotiate program /usr/lib/squid/negotiate_kerberos_auth
auth_param negotiate children 80 startup=5 id
to drop the WebShield on-machine and
> using ICAP in Squid to pass traffic to an AV scanner instead.
Maybe I'll go that route. Have to find an AV Scanner.
Alan
___
squid-users mailing list
squid-users@lists.squid-cache.org
http://lists.squid-cache.org/listinfo/squid-users
Squid 3.5.2 intercept mode and Avast free antivirus 2015 on windows 7
aren't playing well together. Chrome returns a ca invalid error,
details reveal
its the avast web/mail shield cert that its not being trusted.
Everything works if
I turn the webshield off, or on a very strange note, works fin
m compiler
Thread model: posix
gcc version 4.2.1 20070719
soo, manually editing autoconf.h to:
#define HAVE_ATOMIC_OPS 0
Is there a more graceful way to deal with this?
Alan
___
squid-users mailing list
squid-users@lists.squid-cache.org
http://
good
rootca.pem file? Or is something else wrong?
Thanks muchly for helping the newbie.
Alan
the openbsd5.6 cert.pem contains the following issuers/certificates:
# grep Issuer /etc/ssl/cert.pem
Issuer: C=US, O=GTE Corporation, OU=GTE CyberTrust Solutions,
Inc., CN=G
TE CyberTrust Global
Surely
Alan Palmer
DO NOT SPAM
> On Feb 21, 2015, at 20:02, Amos Jeffries wrote:
>
>> On 22/02/2015 1:31 p.m., Eliezer Croitoru wrote:
>> Hey Alan,
>>
>> I am unsure but is this SSL library headers files are compatible with
>> OpenSSL or it would requ
[apalmer]:/data/src/squid-3.5.2# openssl version
LibreSSL 2.0
Alan Palmer
DO NOT SPAM
> On Feb 21, 2015, at 09:27, Amos Jeffries wrote:
>
>> On 22/02/2015 2:03 a.m., Alan Palmer wrote:
>> So I get the following error building squid 3.5.2 on openbsd 5.6-release
>>
ocal/man --infodir=/usr/local/info
--localstatedir=/var/squid --disable-silent-rules CC=cc CFLAGS=-O2 -pipe
LDFLAGS=-L/usr/local/lib CPPFLAGS=-I/usr/local/include CXX=c++
CXXFLAGS=-O2 -pipe --enable-ssl-crtd --enable-ltdl-convenience
I borrowed the
, using the
non-specific addresses 0.0.0.0 and [::] fails. I had to put a real ip
address, in this case loopback, but using another real interface on my
machine also worked.
Bug/'Feature' in OpenBSD 5.6 implementation or all split stack OSs?
Thanks muchly for the h
ults with physical i/o: 0
cert generation ala
http://wiki.squid-cache.org/EliezerCroitoru/Drafts/SSLBUMP (squid.conf
changed to cert=/etc/squid/ssl_cert/myCA.pem)
openssl req -new -newkey rsa:1024 -days 365 -nodes -x509 -keyout
myCA.pem -out myCA.pem
squid -z
FATAL: No valid signing SSL certif
I'm trying to get squid 3.4.11 on openbsd 5.6 to act as a transparent
ssl proxy.
I've rebuilt squid with --enable-ssl-crtd, generated my own self signed
cert (ala http://www.akadia.com/services/ssh_test_certificate.html) and
have the following config lines:
https_port 3127 transparent ssl-bu
I've been able to set up digest file authentication on the Squid proxy by
adding the following to squid3.conf.
auth_param digest program /usr/lib/squid3/digest_file_auth -c
/etc/squid3/passwordsauth_param digest realm proxyacl authenticated proxy_auth
REQUIREDhttp_access allow authenticated
I h
Can't reach any web pages when browsers set to proxy with Squid.
Squid's running but doesn't appear to be listening for tcpv4 connections. This
is a default install on Ubuntu 14.04 server, sudo apt-get install squid3.
Firewall is not blocking access. Here's command output showing that and
apparen
On Thu, Jan 15, 2015 at 7:59 PM, Amos Jeffries wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> On 15/01/2015 11:00 p.m., Alan wrote:
>> Hello,
>>
>> I want to have a minimal Squid installation. So I compiled
>> disabling everything I don'
Hello,
I want to have a minimal Squid installation.
So I compiled disabling everything I don't need.
The resulting /usr/sbin/squid is 3.4 Mb.
Since I don't need logging, I decided to remove that as well, but its
not easy to do with sed since sometimes log messages span multiple
lines.
So I chang
Alex,
This corrected the compile problem. It now compiles and installs without error.
Thank you!
Eliezer,
Thanks for sharing the script. I will save that for future reference.
Alan
From: squid-users [mailto:squid-users-boun...@lists.squid-cache.org] On Behalf
Of Alex Domoradov
Sent: Saturday
Trying to compile on RHEL7, I get the following. I’m sure I have a path error.
libtool: link: g++ -Wall -Wpointer-arith -Wwrite-strings -Wcomments -Wshadow
-Werror -pipe -D_REENTRANT -g -O2 -march=native -std=c++11 -g -o
basic_ncsa_auth basic_ncsa_auth.o crypt_md5.o
../../../lib/.libs/libmiscc
, and also a
couple of custom external acls.
Alan
On Fri, Oct 24, 2014 at 9:49 PM, Eliezer Croitoru wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Hey Eugene,
>
> I will try to clear things out.
> Any helper is an external software but each and every one of the
21 matches
Mail list logo
