Re: [squid-users] centos 6.x repo

2014-12-23 Thread Alexander Samad
rated squid and squid helpers into two different > packages in order to allow an admin to install squid core on a > "vanilla" CentOS with no EPEL repositories installed. > > Eliezer > > On 12/24/2014 12:32 AM, Alexander Samad wrote: >> Hi >> >&

Re: [squid-users] centos 6.x repo

2014-12-23 Thread Alexander Samad
CentOS version and libs. > Downsides? If someone has a 6.5 or older 6 branch system without > enough updates to work with the RPMs. > > Eliezer > > On 12/23/2014 05:54 AM, Alexander Samad wrote: >> Hi >> >> Just found this repo from the wiki >> http://www1.ngtech.

[squid-users] centos 6.x repo

2014-12-22 Thread Alexander Samad
Hi Just found this repo from the wiki http://www1.ngtech.co.il/rpm/centos/6/$basearch Wondering what if any downsides there are to using the lastest on 6.x ? Alex ___ squid-users mailing list squid-users@lists.squid-cache.org http://lists.squid-cache.o

Re: [squid-users] Disable SSLv3 on Squid doesn't seem to work

2014-12-14 Thread Alexander Samad
does that need to be https_port ? this is what I have used https_port 2.7.3.1:443 accel cert=/etc/httpd/conf.d/a,b,c.crt key=/etc/httpd/conf.d/a.b.c.key defaultsite=a.b.c options=NO_SSLv2,NO_SSLv3 The only thing I haven't got working is PFS. I test with https://www.ssllabs.com/ Alex On 22 No

Re: [squid-users] Centralized Squid - design and implementation

2014-11-17 Thread Alexander Samad
Why haproxy instead of a pacemaker. I have 2 dmz boxes I setup in a cluster. so I have 2 vips for the squid proxies. and dns setup to round robin to the vip's. I see sort of even distribution but I don't have a single point of failure. if 1 node failes the vip moves over to the other node.. O

Re: [squid-users] Question squid on centos 6.5 and poodle

2014-10-19 Thread Alexander Samad
PGP SIGNED MESSAGE- > Hash: SHA1 > > On 20/10/2014 2:28 p.m., Alexander Samad wrote: >> Hi >> >> Thanks for clearing that up. so when i do a openssl ciphers and >> select the ciphers i want including the PFS enables oned, i take >> the list and try and use it in c

Re: [squid-users] Question squid on centos 6.5 and poodle

2014-10-19 Thread Alexander Samad
17 October 2014 18:20, Amos Jeffries wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > On 17/10/2014 7:24 p.m., Alexander Samad wrote: >> Hi >> >> I am trying to reconfig the ssl setup on a reverse proxy set >> >> https_port 2.7.3.1:443 accel >

[squid-users] Question squid on centos 6.5 and poodle

2014-10-16 Thread Alexander Samad
Hi I am trying to reconfig the ssl setup on a reverse proxy set https_port 2.7.3.1:443 accel cert=/etc/httpd/conf.d/office.xyz.com.crt key=/etc/httpd/conf.d/office.xyz.com.key dhparams=/etc/httpd/conf.d/office.xyz.com.dhparam defaultsite=office.yieldbroker.com options=NO_SSLv2,NO_SSLv3 cipher=AL