On 31/10/19 9:49 am, Marek Greško wrote:
> Hello,
>
> Matus, I also found the document. It should be sending the chain, but
> is not. When I specify cafile option it responds I shoud use
> tls-cafile. But in either case it is not sending.
>
> Walter, if squid has such requirement, then it is unfi
Can i stop squid from 'repairing' host headers?
I've been all over this for hours, I can only lead this back to this change
in 1999
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=50292
I wan't this sample code to do trough squid what it would do without a
proxy at all and i want squid to log th
On 28/10/19 6:10 am, Felix Leimbach wrote:
> Hi,
>
> I want to include the URLhaus blacklist [1] to protect my users from malware,
> since squidblacklists.org doesn't seem to be actively maintained anymore (RIP
> Ben Nichols).
>
> However there does not seem to exist an acl type that can match
On 31/10/19 8:48 pm, Mark Bergman wrote:
> Can i stop squid from 'repairing' host headers?
Yes.
For context:
RFC 7230 :
"If the target URI includes an authority component, then a
client MUST send a field-value for Host that is identical to that
authority component"
"If the target URI inc
reincluded the list for completeness and archiving.
We're building a setup where I want to be able to find domain fronting [
https://en.wikipedia.org/wiki/Domain_fronting] attempts in the logs
used test script:
>
> import requests
> proxies = {'http': 'http://10.0.0.4:8080',}
> headers = {"Host":
On 10/31/19 7:48 AM, Mark Bergman wrote:
> logformat combined2 ... %ru ... "%>h"
> example log line:
> ... http://www.google.com/ ... "...Orig-Host:
> someevilhost.appspot.com\r\nHost:
> www.google.com\r\n"
> I'm looking for a way to have Squid log the original request
You ar
De : squid-users de la part de
Antony Stone
Envoyé : mercredi 30 octobre 2019 17:39
À : squid-users@lists.squid-cache.org
Objet : Re: [squid-users] Unsuccessful at using Squid v4 with intercept
On Wednesday 30 October 2019 at 17:11:29, FOUTREL Sébastien wrote
Is there a way to do something similar to NGINX's "ssl_verify_client
optional;"?
___
squid-users mailing list
squid-users@lists.squid-cache.org
http://lists.squid-cache.org/listinfo/squid-users
I just start learn squid, and i find a
2019/11/01 00:06:14 kid1| helperHandleRead: unexpected read from timecheck
#Hlpr8, 3 bytes 'OK
'
2019/11/01 00:06:20 kid1| helperHandleRead: unexpected read from timecheck
#Hlpr6, 3 bytes 'OK
in my cache log, timecheck is my php auth for squid
I have follow q
On 1/11/19 5:53 am, FOUTREL Sébastien wrote:
>
> *De :* Antony Stone
> *Envoyé :* mercredi 30 octobre 2019 17:39
>
> On Wednesday 30 October 2019 at 17:11:29, FOUTREL Sébastien wrote:
>
>> Hello, I would like to use squid a
On 1/11/19 6:23 pm, 499258179 wrote:
> I just start learn squid, and i find a
> 2019/11/01 00:06:14 kid1| helperHandleRead: unexpected read from timecheck
> #Hlpr8, 3 bytes 'OK
> '
> 2019/11/01 00:06:20 kid1| helperHandleRead: unexpected read from timecheck
> #Hlpr6, 3 bytes 'OK
> in my cache log,
Following is my php script, can u check for me, it is looks like only one
line stdout
--
Sent from:
http://squid-web-proxy-cache.1019090.n4.nabble.com/Squid-Users-f1019091.html
___
squid-users mailing list
squid-users@lists.squid-cache.org
http://li
On 1/11/19 9:19 am, Antonio SJ Musumeci wrote:
> Is there a way to do something similar to NGINX's "ssl_verify_client
> optional;"?
Set sslflags=DELAYED_AUTH on the http(s)_port line.
Though why you would want to slow every TLS connection setup with KBs of
certificates pushed in both directions
Hello Sebastian,
If you decide to go policy routing way as Amos suggested - please see the
tutorial at
https://docs.diladele.com/tutorials/policy_based_routing_squid/index.html
Or
https://docs.diladele.com/tutorials/web_filter_https_squid_cisco_wccp/index.html
for WCCP.
Best regards,
Rafael
14 matches
Mail list logo
