Re: [squid-users] Squid 4.15 on FreeBSD 12.2 Stable - Kerberos helper issues

Hello, did not you change the password on the account? If you change password you should recreate the keytab. Marek ut 24. 5. 2022 o 14:23 Suporte - Konntrol napísal(a): > Thanks Amos. > I have recreated the keytab and it is back working, although I will need > to better investigate the root

Re: [squid-users] IP Whitelist still getting user:pass prompt

Hello, I see extra spaces in acl allowedips src " /etc/squid/allowedips.txt " It should be acl allowedips src "/etc/squid/allowedips.txt" What is you format of the file itself? Are you seeing the password prompt also when only http protocol is used in communicaton? Marek 2021-04-24 13:58 GMT

Re: [squid-users] dh key too small

hanks Marek 2021-02-15 19:56 GMT+01:00, Marek Greško : > Hello, > > I am struggling with "ERROR: negotiating TLS on FD 53: > error:141A318A:SSL routines:tls_process_ske_dhe:dh key too small > (1/-1/0)" error when ssl bumping. > > I cannot find out where the prob

[squid-users] dh key too small

Hello, I am struggling with "ERROR: negotiating TLS on FD 53: error:141A318A:SSL routines:tls_process_ske_dhe:dh key too small (1/-1/0)" error when ssl bumping. I cannot find out where the problem liesand why is the key too small. I regenerated my dhparams with openssl dhparam -outform PEM -out d

Re: [squid-users] Squid doesn't notice AD group changes

Hello, that looks correct. Maybe I would add -B option to the ext_ldap_group_acl helper to specify basedn for users. Marek 2021-01-24 10:06 GMT+01:00, heimarbeit123...@web.de : > Thanks for your replies! > > Yes, I did try "external_acl_type wbinfocheck %LOGIN > /usr/lib/squid/ext_wbinfo_group_

Re: [squid-users] ssl bump intermediate certificate

CA : No CRL signing : Yes CRL signing CA : No Any Purpose : Yes Any Purpose CA : Yes OCSP helper : Yes OCSP helper CA : No Time Stamp signing : No Time Stamp signing CA : No What am I doing wrong? Thanks Marek 2019-10-31 8:38 GMT+01:00, Amos Jeffries : > On 31/10/19 9:49 am, Marek Greško wr

Re: [squid-users] ssl bump intermediate certificate

intermediate and clients install only root CA. The proxy should be responsible to hold the chain. The url Matus sent is the correct way how to do it, but is is not working. At least not in 4.8 vesion. Marek 2019-10-30 10:42 GMT+01:00, Matus UHLAR - fantomas : >>On 30.10.2019 05:59, Marek

[squid-users] ssl bump intermediate certificate

Hello, I am trying to configure ssl bumping on squid 4.8 but my browser is not able to validate the certificate due to intermediate certificate missing. How could I convince squid to send it? Thanks Marek ___ squid-users mailing list squid-users@lists.