id is possible for me
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
I don't have lysdexia. The Dog wouldn&#x
, SNAT to VIP
IP) -> squid (port 3129) -> internet
is this kind of config viable, and if so, what pieces do i have
wrong? in this scenario is transparent or intercept the proper means
within squid?
You need to find out how HAPROXY handles intercepted connections.
--
Matus UHLAR - fantoma
like CRL lists or any kinds of signed content, where you don't have to be
afraid of it being modified, e.g. debian packages
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adr
, the proxy has no idea what data flow through
the server. Afaik mtalk.google.com:5228 is used for google/firebase cloud
messaging.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NED
- applies within strings
e.g.
url_regex .maxon.net
matches
"ourmaxonanet.com"
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT a
On 22/02/25 22:21, Matus UHLAR - fantomas wrote:
On 21/02/25 05:31, Matus UHLAR - fantomas wrote:
I am trying to manually backport squid-6.13 to Debian 12.
looks like newest squid-openssl Pre-Depends: on "squid"
however "squid" is in conflict with "squid-openssl&q
icitly requires authentication to have been
performed before it can perform its check. Check your auth_param
settings, and prior proxy_auth type ACL that perform the login.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this
Am 26.02.25 um 13:05 schrieb Matus UHLAR - fantomas:
As I understand it, I can build squid without ipv6 support. Is there
any other way to disable outgoing ipv6 communication?
On 26.02.25 14:27, Amon Ott wrote:
Try tcp_outgoing_address 0.0.0.0
according to:
https://marc.info/?l=squid-users
7f028a174eb2 in __assert_fail () from /lib/x86_64-linux-gnu/libc.so.6
#5 0x564f2a77e824 in Ip::Address::getAddrInfo(addrinfo*&, int) const ()
I have squid 5.7 on Debian 12
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail ad
On 21/02/25 05:31, Matus UHLAR - fantomas wrote:
I am trying to manually backport squid-6.13 to Debian 12.
looks like newest squid-openssl Pre-Depends: on "squid"
however "squid" is in conflict with "squid-openssl"
Is this a bug in control package or did someth
ted successfully)
?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Christian Science
that channel I observe a very high latency.
What might be the reason for that and can I solve it by configuring Squid
or should I check redsocks configs?
I recommend looking to your redsocks log first.
If not, packet capture could explain where the latency comes from.
--
Matus UHLAR - fantomas, uh
> SQUID > DESTINATION
>
> 192.168.178.50 TCP_TUNNEL/200 4126 CONNECT 104.26.9.59:443 -
HIER_DIRECT/104.26.9.59
>
> I would need,
>
> CLIENT > SOCKS5 PROXY > SQUID > DESTINATION
>
> 192.168.178.50 TCP_TUNNEL/200 4126 CONNECT api.myip.com:443 -
HIER_DIRECT/
ICAP server does not need to reside on machine squid proxy runs on.
http://www.squid-cache.org/Doc/config/icap_service/
I don't understand your request more deeply so it's quite hard to give more
thorough answer.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
/config/follow_x_forwarded_for/
note that you should this header should be only trusted when you trust the
client, localhost should be fine
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na
ppen with squid.
You more likely get maximum munmer of open filedescriptors, but that one can
be increased much more than number of apache processes.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie:
On 2024-11-21 07:29, Matus UHLAR - fantomas wrote:
I run squid 6 (currently 6.10) on some debian hosts.
when rotating logs in the night, I get mail about cron output:
2024/11/21 00:00:41| Processing Configuration File:
/etc/squid/squid.conf (depth 0)
2024/11/21 00:00:41| Processing
redirect the "squid -k rotate" stderr to /dev/null
but I would like to avoid it when possible - if any error happens, I't like
to know about that.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address
:37 -0500.396 10.46.49.135 TCP_TUNNEL/200 23735 CONNECT
http://www.safgard.com:443/ - \ HIER_DIRECT/206.188.0.52 - -/-
acl localnet dst 10.0.0.0/8
...
http_access allow localnet
.. never gets here.
http_access deny !kerb-auth
http_access allow kerb-auth
http_access deny all
--
Matus UHLAR - fantomas,
ccess deny all
The bottom? Are there any ACL rules that allow clients' access before this?
Because ACL rules are processed in the order they are specified.
-Original Message-
From: squid-users On Behalf Of
Matus UHLAR - fantomas
Sent: Tuesday, November 12, 2024 10:19 AM
authentication.
what type of proxy authentication you use?
-Original Message-
From: squid-users On Behalf Of
Matus UHLAR - fantomas
Sent: Tuesday, November 12, 2024 10:10 AM
To: squid-users@lists.squid-cache.org
Subject: Re: [squid-users] Access Log Question
Caution: This email originated from
assed completely due to our config, for some reason.
what is it logging? doest is log "-" instead of usernames?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOS
/Versions/v3/3.1/RELEASENOTES.html#ss2.11
Customer reports that this does not work. While it is apparently not problem
of squid, I still would like to ask
- does anyone have experience with using squid for NTRIP communication?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk
foo dstdomain foo.example.com
cache_peer_access 172.27.46.253 allow foo
never_direct allow foo
# permission for clients to make requests that reach that device
http_access allow localnet foo
Add more ACL conditions as needed to restrict the http_access line to
the appropriate clients.
-
.46.253 is in private IP range, so this address is pointing to device in
your network.
Is it behing firewall, NAT, load balancer?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto ad
_ecn" to '0'
# sysctl net.ipv4.tcp_ecn=0
# confirm
# sysctl net.ipv4.tcp_ecn
net.ipv4.tcp_ecn = 0
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolv
riginal Message-
From: squid-users On Behalf Of
Matus UHLAR - fantomas
Sent: Wednesday, October 16, 2024 7:56 AM
To: squid-users@lists.squid-cache.org
Subject: Re: [squid-users] Unable to access a device over port 4434
Caution: This email originated from outside of Hexcel. Do not click l
eserved=0
Because ERR_CONNECT_FAIL/WITH_SERVER and "Connection timed out" both say that
the squid was unable to open connection to server.
which is not a squid issue but network connection issue.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish
om the squid machine?
wget -Y off http://172.27.46.253:4434/jpiana
Because ERR_CONNECT_FAIL/WITH_SERVER and "Connection timed out" both say
that the squid was unable to open connection to server.
which is not a squid issue but network connection issue.
--
Matus UHLAR - fantomas, uh
hosts) for directives like
this one.
I am not sure if http_port supports this but you should be able to check.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT
t does the "systemctl status squid" say?
On Fri, Sep 27, 2024 at 12:57 PM Matus UHLAR - fantomas
wrote:
On 27.09.24 12:50, Vivek Saurabh (CONT) wrote:
>I can restart the service wuth user and group being root. However, while I
>try to start using user as apdpr01 and group as root, it is
?
Because squid can use configuration files that have permissions available
under root user, not under other users.
The same applies for logs and cache.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie
.log, any error?
- why do you restart squid service, isn't reload enough for you?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
parentproxy1 parent 3128 0 proxy-only no-query round-robin
cache_peer_access parentproxy1 allow x-sites
cache_peer_access parentproxy1 deny all
use no-netdb-exchange in cache_peer directive
http://www.squid-cache.org/Doc/config/cache_peer/
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http
that would
trigger a process stop?
I guess some errors in squid config file can cause that.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu post
llow from_arc"
or any other line that should allow CONNECT from 10.46.49.190 to "hexcelssp"
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem
our
Windows DNS server and we can ping all devices using their hostname, just
not when browsing to it. This leads me to believe something may be wrong
with our squid config.
hard to guess without seeing logs or ACL's.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantom
ng)
- Assertion in ESI Variable Assignment
- Null Pointer Dereference In ESI's esi:include and esi:when Note: Various GHSA
advisories have been provided by the security researcher but are not published
/ available yet.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Wa
On 14.08.24 08:29, Matt Groves wrote:
I can't see anywhere that this is discussed. Is there any way to add the
outgoing address to the log?
Perhaps %http://www.squid-cache.org/Doc/config/logformat/
http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this addres
On 2024-08-09 09:03, Matus UHLAR - fantomas wrote:
FTR, I sent the info privately, but we can continue
discussing/solving it here.
maybeMakeSpaceAvailable: request buffer full:
client_request_buffer_max_size=524288
ReadNow: ... size 0, retval 0, errno 0
terminateAll: 1/1 after
On 09.08.24 09:51, Alex Rousskov wrote:
On 2024-08-09 09:03, Matus UHLAR - fantomas wrote:
FTR, I sent the info privately, but we can continue
discussing/solving it here.
maybeMakeSpaceAvailable: request buffer full:
client_request_buffer_max_size=524288
ReadNow: ... size 0, retval 0
On 2024-08-09 09:03, Matus UHLAR - fantomas wrote:
FTR, I sent the info privately, but we can continue
discussing/solving it here.
maybeMakeSpaceAvailable: request buffer full:
client_request_buffer_max_size=524288
ReadNow: ... size 0, retval 0, errno 0
terminateAll: 1/1 after
On 2024-08-08 10:53, Matus UHLAR - fantomas wrote:
The bad news is that "debug_options ALL,9" caused test upload to succeed
(multiple attempts). After commenting it out it fails again.
On 08.08.24 13:13, Alex Rousskov wrote:
You are probably dealing with a race condition of some k
On 2024-08-08 06:19, Matus UHLAR - fantomas wrote:
Perhaps configuring proper debug_options, but which?
On 08.08.24 08:15, Alex Rousskov wrote:
Yes, we should escalate triage to debugging log analysis. I am willing
to study your ALL,9 cache.log collected from Squid v6 while
reproducing the
On 2024-08-07 13:05, Matus UHLAR - fantomas wrote:
after we upgraded squid 4.13 to squid 5.7 (debian 11 to 12)
our user reported that attempring to uploading bigger files fails.
On 07.08.24 14:31, Alex Rousskov wrote:
Thank you for sharing access.log records. Any relevant messages in
t;
Any idea what can be wrong?
CURL 8.8.0 from debian backports did not help as well.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Sav
ccess deny CONNECT !SSL_ports
http_access allow localhost manager
http_access allow manager
http_access deny manager
http_access deny to_localhost
http_access allow <...>
http_access deny all
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-
to reply from the firewall back to
the client.
I do not know if you need a pcap file
On Jul 31, 2024, at 03:35, Matus UHLAR - fantomas wrote:
On 30.07.24 12:55, Jonathan Lee wrote:
Hello fellow squid users can you please help?
I have noticed that I get 409 errors with IPv6 only
ion ?
Squid on Debian and Ubuntu do not have following options:
--enable-ssl
--enable-ssl-crtd
You may want to build one from source for yourself.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varo
for ACL use within subnets? The system works as long as
clients are double stacked.
Can we see example of those errors in log files?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu
: close
.
HTTP/1.1 403 Forbidden
I think it's time to look at squid config again, to see if you don't deny
manager access in squid configuration before allowing it.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertisi
On 10.07.24 09:33, Jonathan Lee wrote:
To: Matus UHLAR - fantomas
please avoid personal copies.
I have it says denied as if it requires an entry for one to use password, again
if I remove the password the same thing happens. Weird right? Could WPAD cause
this?
what exactly did you run
On 10.07.24 08:52, Jonathan Lee wrote:
That makes sense, I only had a password in the previous version, how do I
add username admin for cachemgr?
you don't, that's why I said "username was not important"
simply try random username
On Jul 10, 2024, at 04:29, Matus UHL
ons username was not important for manager queries, just
the password, which should be either part of user or provided by -W option
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem
ect off
Afaik this means that it is not possible with any remote server, because all
servers you want to access this way must be explicitly set up in squid.conf,
correct?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to t
nary from your site?
Ubuntu includes squid packages, and provides security support for them.
It's rarely needed to rebuild packages on your own, you should not need it.
I prefer Debian which is similat to ubuntu and it comes with certgen, so it
might wor for you.
--
Matus UHLAR - fantomas,
not exist on your system
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Quantum mechanics: The dreams stuff is made of.
__
e.org/Features/RockStore
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Emacs is a complicated operating system without good text e
ed to find it out themselves.
https://lists.squid-cache.org/pipermail/squid-users/2023-September/026164.html
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek
ace design; try
reading one.
I am not a squid developer, you idiot.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
If Barbie is so popular,
t;ssl_crtd" process you have configured
to create certificates for you is crashing.
I have asked and you have not answered: What's in the cache_log file?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address
ng another interface/route.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
- Have you got anything without Spam in it?
- Well, there's S
quot;Oops something went wrong lol" errors.
The same applies to web clients, what do you expect squid to do, display
"squid admin screwed up the ssl_crtd configuration"?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-ma
Thu, Sep 28, 2023 at 3:41 AM Matus UHLAR - fantomas
wrote:
On 27.09.23 16:48, Fernando Giorgetti wrote:
>I would like to know if it is possible to set up Squid to perform
>TLS passthrough to a given backend, relaying TLS encrypted
>traffic to the backend, similarly to what HAProxy d
-users/2023-September/026103.html
from the mail:
acl urldst_ipv6 url_regex ^http://\[
http_access deny urldst_ipv6
I believe it should be replaced by dstdom_regex.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this
/encryption-strategies/#tls-passthrough
I have tried a few different configurations using reverse proxy,
or peek and splice, but I could not make it work without providing
a valid HTTP request or a CONNECT request.
what's the difference between TCP redirect and this?
--
Matus UHLAR - fan
On 2023-09-26 07:39, Matus UHLAR - fantomas wrote:
I have just encountered bug 4906 with squid-4.13 (Debian 11)
I could upgrade system fo Debian 12 with squid-5.7 but this issue
doesn't seem to be resolved in it, at least:
http://www.squid-cache.org/Versions/v5/changesets/
does not me
On 22/09/23 01:15, Matus UHLAR - fantomas wrote:
I'm curious if the udp:// logging is syslog-compatible.
Do I just need to congigure proper logformat?
On 26.09.23 12:20, Amos Jeffries wrote:
The Squid "udp" logging module sends your log lines as opaque UDP
packet payload t
l/20.patch
...but I find trying such complicated patch too risky.
I would like to avoid the "has request" ACL to ba able to see problems that
come from other hosts than the load balancer.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish N
Hello,
I'm curious if the udp:// logging is syslog-compatible.
Do I just need to congigure proper logformat?
Does anyone have experience with this?
Thanks
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this ad
n 12.09.23 10:07, Jason Long wrote:
Thank you so much for your reply.
Dante (https://www.inet.no/dante/)? How does it performance?
yes, that one. performance is fine.
Can it also act as an HTTP server?
No. It's strictly SOCKS server.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ;
server?
Dante is quite capable and can do a LOT of things.
To be frank, having configuration, logging and ACL's on one place made me
also think to use SQUID for SOCKS in the past.
But for SOCKS I use Dante because of that.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantom
Long wrote:
Thank you so much for your reply.
Does the Squid-cache team have any plans to add this feature?
There is project to support is but it needs testing and programmer's work:
https://wiki.squid-cache.org/Features/Socks
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.f
P addresses, I'm not seeing another option which would
match those and allow to use a device name instead (my original
requirement).
you'd find that the "eth0" interface has configured address 192.0.2.1 so
you use 192.0.2.1 as outgoing address.
--
Matus UHLAR - fantomas, uh
nterface use and use
those address (so you can define "eth0" instead of 192.0.2.1), but routing
is still matter of kernel, so dante does not decide which way packets will
go through.
As a note, in exchange Dante lacks the functionality of routing DNS
requests through the outgoing devic
e a certain device?
You need to make routing/firewall rules for this.
The system does not support selecting outgoing interface other way.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tut
s ssl::server_name_regex -i chat.google.com
And still I can see in the logs that chat.google.com is bumped.
acl just defines "access class list"
bumping is configed by using other directives, notably ssl_bump.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish N
On 08.07.23 13:07, robert k Wild wrote:
True but I don't want to create two ACL lists, one for "ssl name" and one
for "ssl name regex"
try only create one for ssl name. You rarely need regex.
performance will thank youl
On Sat, 8 Jul 2023, 12:57 Matus UHLAR - fantom
redshift3d.com
AFAIK "dstdomain .redshift3d.com"
matches the same, but without complicated, cpu-expensive and hardly readable
regular expressions
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Var
ony Stone,
wrote:
There is no such thing as an ICMP proxy.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
The early bird may get the w
ssions
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Saving Private Ryan...
Private Ryan exists.
different
database tables.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Quantum mechanics: The dreams stuff is made of
rom 2 servers each.
Or there are the logs which contain (or can be configured to record)
a details of *completed* transactions.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu c
are 4 (SOCKS v.4), 5 (SOCKS v.5) and connect (HTTPS
proxy). If the protocol is not specified, SOCKS version 5 is
used.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: n
owever, NC uses socks proxy by default, you should configure it to use http
connect proxy using the -X option.
I would try configuring proxychains or connect-proxy instead of nc.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail adve
t-up and there isn't much documentation online about it.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Depression is m
d a domain.
Hello people.
I running squid 5.7, I got an issue that would like to know if I could fix this.
In my blacklist I got this entries:
.party
.porn
.xxx
.vip
.me
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to th
ng special in that file, which contains for example :
1-1ads.com
101com.com
101order.com
123freeavatars.com
180hits.de
180searchassistant.com
the "t.co" matches.
there are no regexes in that file you should probably use "dstdomain"
instead.
regexes match . as any chara
oth are in the RHEL family.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Micro$oft random number generator: 0, 0, 0
d result.
N.B. the E.C.S. interactions that I've had have used /24 or larger
subnets to protect client identity.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOST
On 10/25/22 10:18 AM, Matus UHLAR - fantomas wrote:
term "interception proxy" better defines what happens here:
Instead, an interception proxy filters or redirects outgoing TCP
port 80 packets (and occasionally other common port traffic).
On 25.10.22 12:52, Grant Taylor wrote:
Whe
On 10/25/22 11:03 AM, Matus UHLAR - fantomas wrote:
I think intercepting is better, more precise.
On 25.10.22 12:14, Grant Taylor wrote:
I think that Squid can be an interception proxy as it can filter /
alter content.
I also think that Squid (as an interception proxy) can be used
On 10/25/22 10:18 AM, Matus UHLAR - fantomas wrote:
I prefer to explicitly state what one means by transparent because
RFC2616 has defined transparent proxy diferently:
On 25.10.22 10:56, Grant Taylor wrote:
I do too. I /thought/ that I was explicitly stating. At least that
was my intention
On 10/25/22 2:43 AM, Matus UHLAR - fantomas wrote:
if by "transparent" you mean "intercepting" proxy, that is incorrect
On 25.10.22 09:47, Grant Taylor wrote:
By "transparent" I mean using network techniques to force clients to
use a proxy that aren't the
s proxy out of the box
yes, by using PAC script, or perhaps an extention that configures it
instead. foxyproxy was mentioned iirc
But anyway, my next step is to use a PAC file, since it is the legacy
method, if this doesn't work either I'm gonna use stunnels
I know nothing of auto
hat's more misleading is that the bug is tagged resolved, as if starting
from firefox 33, it supports https proxy out of the box
But anyway, my next step is to use a PAC file, since it is the legacy method
legacy?
if this doesn't work either I'm gonna use stunnels
--
On 10/21/22 2:25 AM, Matus UHLAR - fantomas wrote:
apparently this is a hack to be able to define proxy autoconfig in
the location field.
Since it has very restricted capabilities, it's apparently non-issue.
I guess that you can only define FindProxyForURL() this way.
On 21.10.22
On 10/20/22 9:49 AM, Matus UHLAR - fantomas wrote:
Also, FTP protocol (port 21) does not support proxying, and using
FTP proxy usually involves hacks.
On 20.10.22 10:14, Grant Taylor wrote:
I completely disagree.
I've been using FTP through proxies for years. Firefox (and
Thunderbird
On 10/20/22 9:49 AM, Matus UHLAR - fantomas wrote:
proxy autoconfig is javascript-based but uses very limited javascript.
On 20.10.22 10:14, Grant Taylor wrote:
My comment was more directed at why is $LANGUAGE_DOESNT_MATTER used
/in/ /the/ /location/ /field/?
apparently this is a hack to be
proxying, and using FTP proxy
usually involves hacks.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
I'm not interested in your web
1 - 100 of 478 matches
Mail list logo
