-party services or crutches. As
well as the search for workaround for functionality that worked yesterday.
26.10.15 2:15, Eliezer Croitoru пишет:
> On 25/10/2015 21:28, Yuri Voinov wrote:
>> It's not about that. It's about the fact that, with exactly the same
>> parameters ca
the page response with a
Last-Modified header and can be cached again.
I am unsure who is the culprit for the issue but I will ask about it
in a separated thread *if* I will get no response here.(sorry for
partially top-posting)
Eliezer
On 25/10/2015 21:29, Yuri Voinov wrote:
In a nutsh
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Hi gents.
There is a good contest for all squidmans ;)
So.
We have wey idiotic protocol - OSCAR, and very antique IM client.
This is ICQ.
So what - it's work via Squid 3.4.x (both transparent and forwarding)
using proxy settings by client.
Bu
> On 10/26/2015 04:41 AM, Yuri Voinov wrote:
>
>> what has changed so much that the same
>> configuration I get 10 times smaller cache hit.
>
> You are asking a good question. I do not think anybody knows the exact
> answer -- too many things have changed in general to ei
sskov пишет:
> On 10/26/2015 04:41 AM, Yuri Voinov wrote:
>
>> what has changed so much that the same
>> configuration I get 10 times smaller cache hit.
>
> You are asking a good question. I do not think anybody knows the exact
> answer -- too many things have changed i
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
I think the right question is not "What headers pass through Squid" and
"Why did they pass through a transparent proxy, if the port that is
used, not 80 or 443?"
26.10.15 23:26, Amos Jeffries пишет:
> On 27/10/2015 4:54
- the more we do not know and can not know.
26.10.15 23:34, Alex Rousskov пишет:
> On 10/26/2015 11:19 AM, Yuri Voinov wrote:
>
>> 4.0.1 has more than 4 times
>> bigger mem_cache, 1 Gb. 1st example 3.5.10 has only 256 Mbytes. This is
>> the reason of miss??
>
> P
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Here is one day Squid 4 working statistics (by Calamaris):
http://i.imgur.com/XeYRWbY.png
It's about nothing. Squid 3 in bad days easy achieves 35%
26.10.15 23:34, Alex Rousskov пишет:
> On 10/26/2015 11:19 AM, Yuri Voinov wrote:
&g
0.34
- - -- -- --- --
-- ---
Sum 156621 100.00 9.642.97 1884596K 100.00
5.914.14
Less, than 30% https, isn't it?
26.10.15 23:34, Alex Rousskov пишет:
> On 10/26/2015 11:19 AM, Yuri Voinov wrote:
&g
early pass ICQ.
27.10.15 0:27, Amos Jeffries пишет:
> On 27/10/2015 6:30 a.m., Yuri Voinov wrote:
>>
>> I think the right question is not "What headers pass through Squid" and
>> "Why did they pass through a transparent proxy, if the port that is
>> use
ient got "Login denied, check
login/password". Whenever right or wrong password.
Viola, connection denied completely.
27.10.15 0:27, Amos Jeffries пишет:
> On 27/10/2015 6:30 a.m., Yuri Voinov wrote:
>>
>> I think the right question is not "What headers pass throu
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
27.10.15 1:37, Amos Jeffries пишет:
> On 27/10/2015 6:22 a.m., Yuri Voinov wrote:
>>
>> Ah, ok:
>>
>> We see in redbot.org this info in server response:
>>
>> Cache-Control: no-cache
>>
>
> It
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
27.10.15 1:34, Amos Jeffries пишет:
> On 27/10/2015 6:19 a.m., Yuri Voinov wrote:
>> 14458854979.432 48 127.0.0.1 TCP_MISS/200 24425 GET
>>
https://upload.wikimedia.org/wikipedia/commons/thumb/8/8c/Teller-Ulam_device.p
U&majorVersion=65&minorVersion=5&pointVersion=0&port=443&ts=1445937162&sig_sha256=ud53qDTKRJCe49ReARVd27GP26p8HFXqDQ2eRQl84i4%3D
- ORIGINAL_DST/178.237.23.232 text/xml
1445937234.135178 192.168.100.103 TCP_MISS/200 915 GET
http://api.icq.net/aim/startOSCARSession?a=%2
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
I confirm: 3.5.10 has normal cache-hits rate. Against 4.0.1. For the
same sites.
Something broken in 4.x.
27.10.15 1:37, Amos Jeffries пишет:
> On 27/10/2015 6:22 a.m., Yuri Voinov wrote:
>>
>> Ah, ok:
>>
>> We see
Hi gents.
I think, all of you who use Bump, seen much this messages in your cache.log.
SSL3_READ_BYTES:sslv3 alert certificate unknown
AFAIK, no way to identify which CA is absent in your setup.
I propose to consider the following questions: how do properly support
SSL proxy, if you can not i
28.10.15 16:47, Amos Jeffries пишет:
On 28/10/2015 11:35 p.m., Yuri Voinov wrote:
Hi gents.
I think, all of you who use Bump, seen much this messages in your
cache.log.
SSL3_READ_BYTES:sslv3 alert certificate unknown
AFAIK, no way to identify which CA is absent in your setup.
I propose to
thousand users.
Perl/Python/Haskell/Go/C/C++ really cool - but not every geek is
red-weeks to address the CA's problem of productive server.
28.10.15 19:55, Amos Jeffries пишет:
> On 28/10/2015 11:57 p.m., Yuri Voinov wrote:
>>
>>
>> 28.10.15 16:47, Amos Jeffries пишет:
&
, it should write the information on them in the log - in an
understandable form - that I was not engaged in telepathic guessing and
did not use the method of Edison, turning over hundreds of log records.
28.10.15 19:55, Amos Jeffries пишет:
> On 28/10/2015 11:57 p.m., Yuri Voinov wr
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
We all hope this will be done.
Thanks, Alex, you are heard me.
29.10.15 4:12, Eliezer Croitoru пишет:
> Is it possible to say thanks in advance? or will it won't work the same way
> as after?
>
> Anyway Thanks,
> Eliezer
>
> On 28/10/2015 23:24,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
So, what?
wpad.dat can be placed in any directory in Apache's direstory structure.
Most often it placed in ServerRoot, under htdocs directory. What's the
problem?
30.10.15 20:34, dol...@ihcrc.org пишет:
> I am trying to complete the "Proxy auto c
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Heh, this porn :) URL has Cache-Control: private.
And without special things will not be cached.
04.11.15 1:54, joe пишет:
> hi amos
> this is the header
> Connection: keep-alive
>
> HTTP/1.1 200 OK
> Last-Modified: Mon, 02 Nov 2015 08:13:05 GM
ecial
solutions.
04.11.15 2:01, joe пишет:
> Yuri Voinov lol no its not porn its some url ppl ar daying to get it
> cached dont worry about it it dose cache as i sayd befor please read
^im
> not worry about it im worry about why it dose not stay in cache as i
> explaned bef
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
04.11.15 2:14, joe пишет:
>> Take a look onto Cache-Control header once more.
>
>> It you haven't refresh_pattern with "ignore-private" for this URL and
>> similar, it always not be cached.
>
> if this ignore-private useless then one more bug squ
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
To talk was objective: show the config (squid.conf) and URL, which
causes problems with caching. Telepaths on holiday in Bali. Personally,
I have no idea either looks like configuration or a URL you're trying to
cache. In such a situation it is imp
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
04.11.15 16:07, Amos Jeffries пишет:
> On 4/11/2015 6:40 p.m., linux admin wrote:
>> Can anyone please tell me how to cache youtube videos.??
>>
>
> Every time anyone publishes that info YT mysteriously change their
> system so it gets even more
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
04.11.15 17:05, Amos Jeffries пишет:
> On 4/11/2015 11:35 p.m., HackXBack wrote:
>> and how we can cache Control:private content ?
>> must be a choice ?
>
> Yes. By adding the ignore-private refresh_pattern control.
>
> Though be aware it still d
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
04.11.15 21:59, Amos Jeffries пишет:
> On 5/11/2015 3:26 a.m., joe wrote:
>> if you notice not only dynamic static img as well
>>
>
> Yeah, and hits and misses. Basically all possible processing codes are
> replaced with "SWAPFAI_MISS".
>
>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
This mean that client sent RST packet. You can ignore this error.
09.11.15 18:49, Patrick Flaherty пишет:
> Hello,
>
>
>
> I'm new to Squid, I have it up and running and it's working well. But I am
> getting an error in the CACHE LOG that I canno
ttps only !! (Ahmad Alzaeem)
>
>
> --
>
> Message: 1
> Date: Tue, 10 Nov 2015 05:38:42 +1300
> From: Amos Jeffries
> To: squid-users@lists.squid-cache.org
> Subject: Re: [squid-users] What does this error
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
What is your syslog.conf settings?
10.11.15 22:34, Avraham Serour пишет:
> Hi,
>
> I'm using squid 3 and I want to send my access log to syslog, in my
case it
> is /dev/log
> my conf entry is:
> access_log syslog:local5.info squid
>
> but it seems
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
10.11.15 22:34, Avraham Serour пишет:
> Hi,
>
> I'm using squid 3 and I want to send my access log to syslog, in my
case it
> is /dev/log
> my conf entry is:
> access_log syslog:local5.info squid
>
> but it seems squid is not sending the logs, at
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
1. You need to configure Squid with SSL Bump to capture HTTPS traffic.
2. You need to configure forwarded requests with splice/no bump. :)
10.11.15 22:42, Ahmad Alzaeem пишет:
> Hi Guys I want proxy and I want it to forward http & https to remote
a lot a lot a lot for your help
>
>
>
> cheers
>
>
>
>
>
> From: squid-users [mailto:squid-users-boun...@lists.squid-cache.org]
On Behalf Of Yuri Voinov
> Sent: Tuesday, November 10, 2015 8:49 PM
> To: squid-users@lists.squid-cache.org
> Subject: Re: [squid
.32 parent 8080 0
no-query no-digest
>
>
>
> As ok
>
>
>
> Now what about https directive ?
>
> Can u help me
>
>
>
> Thanks a lot a lot a lot for your help
>
>
>
> cheers
>
>
>
>
>
> From: squid-users [mailto:squid-users-boun..
>
>
>
>
> From: squid-users [mailto:squid-users-boun...@lists.squid-cache.org]
On Behalf Of Yuri Voinov
> Sent: Tuesday, November 10, 2015 8:49 PM
> To: squid-users@lists.squid-cache.org
> Subject: Re: [squid-users] cache peer only forward http , not https !!!
>
>
&g
T !sslports
>
>
>
> # Always allow localhost connections
>
> # From 3.2 further configuration cleanups have been done to make
things easier and safer.
>
> # The manager, localhost, and to_localhost ACL definitions are now
built-in.
>
> # http_access allow localhost
>
>
>
http_access allow localhost
>
>
>
> request_body_max_size 0 KB
>
>
>
>
>
>
>
>
>
> delay_access 1 allow allsrc
>
>
>
> # Reverse Proxy settings
>
>
>
>
>
> # Custom options before auth
>
> dns_nameservers 8.8.8.8 10
1.251 TCP_MISS/503 0 CONNECT
safebrowsing.google.com:443 - HIER_NONE/- -
cheers
*From:*Yuri Voinov [mailto:yvoi...@gmail.com]
*Sent:* Wednesday, November 11, 2015 12:49 AM
*To:* Ahmad Alzaeem
*Cc:* squid-users@lists.squid-cache.org; 'Amos Jeffries'
*Subject:* Re: [squid-users] cache pe
.998 76379 172.23.101.251 TCP_MISS/503 0 CONNECT
self-repair.mozilla.org:443 - HIER_NONE/- -
1447234651.018 75705 172.23.101.251 TCP_MISS/503 0 CONNECT
safebrowsing.google.com:443 - HIER_NONE/- -
cheers
*From:*Yuri Voinov [mailto:yvoi...@gmail.com]
*Sent:* Wednesday, November 11, 2015 12:49 AM
*To:* Ahm
Yes, 3.4.x can't forward https. Upgrade to 3.5.x
10.11.15 15:08, Ahmad Alzaeem пишет:
Hi im using pfsense with cache peer
Squid version is 3.4.10
I have peer proxy on port 80 and I can use it with http and https
Now if I use pfsense in the middle and let pfsense go to remote proxy
(10.12.0.
You are welcome :)
11.11.15 16:04, Ahmad Alzaeem пишет:
Bro you were awsome !
Thank you it worked
I appreciate your help a lot
I wish there is feedback in mailing list to give you 5/5 stars
J
cheers
*From:*Yuri Voinov [mailto:yvoi...@gmail.com]
*Sent:* Wednesday, November 11, 2015 1:04
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
My 5 cents:
http://unbound.net/
11.11.15 22:07, Amos Jeffries пишет:
> On 12/11/2015 3:52 a.m., Matus UHLAR - fantomas wrote:
>> On 10.11.15 17:03, Patrick Flaherty wrote:
>>> Again I'm fairly new to Squid but loving it. We enforce only certain
>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
12.11.15 1:23, Ahmad Alzaeem пишет:
> Hi guys
>
> I want to ask a question
>
>
>
> Assume I have a dns server that resolve all the names to the ip of squid
>
>
>
> So we will have all websites go to squid
>
>
>
> The question is being asked h
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
More probably this is bug http://bugs.squid-cache.org/show_bug.cgi?id=4188.
12.11.15 18:04, Steve Hill пишет:
> On 12/11/15 09:04, Eugene M. Zheganin wrote:
>
>> I decided to intercept the HTTPS traffic on my production squids from
>> proxy-unware
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Read carefully - this is not complete fix. Just dirty hack. And will not
guarantee fixed on _all_ platforms.
12.11.15 19:44, Eugene M. Zheganin пишет:
> Hi,
>
> On 12.11.2015 17:48, Yuri Voinov wrote:
>
>> More probably t
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
We knows nothing meaningful about your infrastructure.
Ergo, we can't get any meaningful advice.
12.11.15 23:59, christian.bufac...@kemone.com пишет:
> Hello.
>
> We have implemented a SQUID proxy between our clients and a Watchguard
> firewall,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
There is no solution for ICQ with Squid now.
You can only bypass proxying for ICQ clients.
13.11.15 14:41, Eugene M. Zheganin пишет:
> Hi.
>
> Today I discovered that a bunch of old legacy ICQ clients that some
> people till use have lost the abi
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Raf, 2.7 is antique :
Somwehere was be 3.1 for Win32.
http://squid.acmeconsulting.it/Squid3.html
Somewhere in Sourceforge was one more Win32 msi-installer with squid 3.1
or 3.3.
14.11.15 0:32, Rafael Akchurin пишет:
> Hello Patrik,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
http://squid.acmeconsulting.it/download/dl-squid.html
3.0 was here.
14.11.15 0:32, Rafael Akchurin пишет:
> Hello Patrik,
>
> We only build 64-bit - see http://squid.diladele.com
> I do not know if anyone managed to build for 32-bit. May be u
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
And
http://sourceforge.net/projects/squidwindowsmsi/files/squid-2.7.2_i386.msi
14.11.15 0:32, Rafael Akchurin пишет:
> Hello Patrik,
>
> We only build 64-bit - see http://squid.diladele.com
> I do not know if anyone managed to build for 32-bi
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
I lost bookmark for 3.1 or 3.3 Win32-Squid. :)
14.11.15 0:32, Rafael Akchurin пишет:
> Hello Patrik,
>
> We only build 64-bit - see http://squid.diladele.com
> I do not know if anyone managed to build for 32-bit. May be use
http://squid.acmeconsul
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Netcat plaintext is not HTTPS :) Also via 443 port :)
14.11.15 1:26, Amos Jeffries пишет:
> On 13/11/2015 10:00 p.m., Tarik Demirci wrote:
>> Hi,
>> Did anyone try on_unsupported_protocol for bumped https connections? I
>> made a simple test with
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Only Win64, only hardcore :)
Diladele RULEZZ ;) I use it on my notebook ;) Under Win10. ;)
14.11.15 1:51, Amos Jeffries пишет:
> On 14/11/2015 8:39 a.m., Yuri Voinov wrote:
>>
>> And
>>
>>
http://sourceforge.n
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
14.11.15 1:54, Amos Jeffries пишет:
> On 14/11/2015 8:37 a.m., Yuri Voinov wrote:
>>
>> Raf, 2.7 is antique :
>>
>
> So is 32-bit for servers.
>
>
>> Somwehere was be 3.1 for Win32.
>>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
This will decrease request hit ratio minimum at 50%
14.11.15 20:11, Eugene M. Zheganin пишет:
> Hi.
>
> On 13.11.2015 18:53, Yuri Voinov wrote:
>> There is no solution for ICQ with Squid now.
>>
>> You can only bypa
more complicated and very marginal protocol.
16.11.15 1:03, Eugene M. Zheganin пишет:
> Hi.
>
> On 15.11.2015 0:43, Walter H. wrote:
>> On 13.11.2015 14:53, Yuri Voinov wrote:
>>> There is no solution for ICQ with Squid now.
>>>
>>> You can only bypass pro
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
http://squid-web-proxy-cache.1019090.n4.nabble.com/Squid-ICQ-contest-td4673938.html
16.11.15 1:03, Eugene M. Zheganin пишет:
> Hi.
>
> On 15.11.2015 0:43, Walter H. wrote:
>> On 13.11.2015 14:53, Yuri Voinov wrote:
>>>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
16.11.15 1:39, Alex Rousskov пишет:
> On 11/15/2015 12:03 PM, Eugene M. Zheganin wrote:
>> It's not even a HTTPS, its a tunneled HTTP CONNECT. But
>> squid for some reason thinks there shoudl be a HTTPS inside.
>
>
> Hello Eugene,
>
> Squid c
16.11.15 12:00, Eugene M. Zheganin пишет:
Hi.
On 16.11.2015 00:14, Yuri Voinov wrote:
It's common knowledge. Squid is unable to pass an unknown protocol on
the standard port. Consequently, the ability to proxy this protocol does
not exist.
If it was simply a tunneling ... It is not
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
I think,
better to ask this question in c-icap list, and not squid.
Also take look on typical squid icap-related config:
http://vgy.me/6xrcxK.png
As you can see, this is _always_ uses reqmod_precache. How you think -
why? :)
16.11.15 20:30, Da
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
16.11.15 20:49, Tecnología CHARNE.NET пишет:
> Hello!
>
> I'm configuring delay pools on squid 3.5
>
> I don't understand online doc
>
[http://www.squid-cache.org/Versions/v3/3.5/cfgman/delay_parameters.html] about
> delay_parameters
>
>
> "
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Feel free to read Squid Wiki:
http://wiki.squid-cache.org/Features/DelayPools
16.11.15 20:49, Tecnología CHARNE.NET пишет:
> Hello!
>
> I'm configuring delay pools on squid 3.5
>
> I don't understand online doc
>
[http://www.squid-cache.org/Versi
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
17.11.15 15:46, Christos Tsantilas пишет:
> On 11/16/2015 08:00 AM, Eugene M. Zheganin wrote:
>> Hi.
>>
>> On 16.11.2015 00:14, Yuri Voinov wrote:
>>
>>> It's common knowledge. Squid is unable to pass an
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
18.11.15 1:27, Amos Jeffries пишет:
> On 17/11/2015 10:16 p.m., Alexander Rottinghaus wrote:
>> Dear squid users,
>> we have a website that uses a persistent wss-connection to provide
large amounts
>> of data to our cutomers. The company of one o
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Telepaths on holiday in Bali.
Which URL?
Which squid.conf?
Which query result?
18.11.15 4:18, Jens Kallup пишет:
> Hello,
>
> what means the log ouput TCP_MISS/200 ?
> Error in squid config?
>
> Jens
>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Something like this:
acl user-agent-browser-mobile browser -i
(android|blackberry|iphone|ipad|ipod|opera mini|iemobile)
http_access deny user-agent-browser-mobile
19.11.15 2:36, Berkes, David пишет:
> I'm trying to find a way to setup an ACL to f
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
https://regex101.com is useful to check regexp for correctness.
21.11.15 3:37, Berkes, David пишет:
> Hello.
> I'm trying to create an ACL browser type to allow any User-Agent
header with the string iPhone. I have tried this ACL various ways and
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
21.11.15 22:56, Ahmad Alzaeem пишет:
> Thanks fot your reply .
>
> I know that my DNS is weird .
>
> But all I need is
> I have access to DNS server , but I don’t have access to pcs to give
them ip:port in their browsers .
What is you need
>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Using shell for helper is bad idea. This is so slow and unscalable.
Use perl, Luke (c) ;)
Seriously, there is exists much better solutions.
23.11.15 3:52, Jens Kallup пишет:
> Hello,
>
> how can i block websites by name or regex?
> The b
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Oh, I see. This is perl inside shell :)
But again - why write own solution when exists better? NIH? ;)
23.11.15 3:52, Jens Kallup пишет:
> Hello,
>
> how can i block websites by name or regex?
> The block script does not block sites.
> I want my
We do not know and can not know why the server sends such a request.
There are only assumptions of varying degrees of reliability. SQUID
configuration in this case is absolutely not enough to give a reasonable
answer.
If the problem is DNS - then what's the Squid?
24.11.15 17:22, Ahmad Alzaee
The reason may be, for example, in the DNS cache poisoning. Or the
transparent interception of DNS requests. In either case, the need to
solve various actions and they are not connected with the SQUID.
24.11.15 17:22, Ahmad Alzaeem пишет:
Hi Devs ,
I have a server that send to squid http/htt
In the case of obviously faulty DNS you can, for example, set up your
own caching DNS (for example, Unbound), which takes data from a known
clean source - for example, by using DNSCrypt and, possible, with DNSSEC
validation. And specifying it as a source of information for Squid's
name resolvin
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
24.11.15 19:31, Ahmad Alzaeem пишет:
> Ok
>
>
> 1. Have you fixed DNS so that clients are now resolving the correct
addresses for destination servers?
> No , the issues will not be solved and will always dns resolve the ip
of websites to the ip
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
One simple Wikipedia URL.
This is second-third-etc. query access log:
http://i.imgur.com/AOpeSQx.png
This is redbot URL info:
http://i.imgur.com/dmwjH26.png
This is squid.conf (3.5.11 latest build):
# -
# A
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Sure. I want to investigate and solve problem. I suggest, it can be
linked with catastrophically low hit ratio in 3.5 and above.
27.11.15 0:11, Eliezer Croitoru пишет:
> Yuri,
>
> I want to suggest something.
> I wrote a log format which can help
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
27.11.15 0:36, André Janna пишет:
>
> Assinatura
> Em 24/11/2015 00:54, Amos Jeffries escreveu:
>> FYI: unless you have a specific need for 3.5 you should be fine with
the 3.4 squid3 package that is available for Jesse from Debian
backports. The
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
This is very old idea. Reverse cache-proxy uses for DDoS protection (as
of one aspect) long time ago.
01.12.15 1:19, Eliezer Croitoru пишет:
> I was wondering if someone have a nice idea on how to use squid to protect
> against DOS\DDOS http\http
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
mikrotik is SOHO-class network equipment. AFAIK we are not talking about
SOHO.
01.12.15 22:23, joe пишет:
> put your server behind mikrotik
> mikrotik has advance firewall and use tarpit instead of drop
> tarpit it freeze the attacker then drop hi
or amazon it won't do the trick but we are talking about 1Gbps+ WAN
connections which are not SOHO.
Sure, agreed. This is not SOHO already.
>
> Eliezer
>
> On 01/12/2015 18:41, Yuri Voinov wrote:
>>
> mikrotik is SOHO-class network equipment. AFAIK we are not talking about
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Just remember - some tools will not be able to recognize such a log
format. For example, squidview.
Those which originally designed the format of "epoch".
02.12.15 20:53, Antony Stone пишет:
> On Wednesday 02 December 2015 at 15:27:24, supergeorg
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Of course, but usually do not read logs eyes.
03.12.15 0:42, Eliezer Croitoru пишет:
> On 02/12/2015 20:38, Yuri Voinov wrote:
>> Just remember - some tools will not be able to recognize such a log
>> format. For example, squidvi
I suggest the problem just required to allow POST method from LAN and/or
to mail servers. Often this can help.
03.12.15 16:02, Amos Jeffries пишет:
On 3/12/2015 7:17 p.m., vivek singh wrote:
Thanks for the quick reply. please find the answers below
1. while uploading attachments,it stays idle
. while on other machines it is working fine.
*@Yuri Voinov*
Q. I suggest the problem just required to allow POST method from LAN
and/or to mail servers. Often this can help
A. Do i explicitly need to do so, if yes please tell me how.
Example:
# Adjust network as you need
acl localnet src
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
# Numeric IP's acl
acl numeric_IPs dstdom_regex [0-9]+\.[0-9]+\.[0-9]+\.[0-9]+
# Deny access to numeric IP's
http_access deny CONNECT numeric_IPs
deny_info TCP_RESET numeric_IPs
06.12.15 8:45, xxiao8 пишет:
> is it possible to enforce all http r
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
tar -cvf logs.tar access.log cache.log; gzip -9 logs.tar ->
http://drive.google.com -> sahre+post URL's
10.12.15 19:56, Magic Link пишет:
> Where can i upload my logs ? It's too big for the mail.
>
> From: magicl...@outlook.com
> To: squ...@treene
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
chmod is about nothing. Who's the owner of cache dir?
11.12.15 2:27, juancho Alfonso пишет:
> Hey thereI have installed CentOS squid in 7I want to change the cache
> directory
> appears when I try to initialize
> Creating Swap Directories
> FATAL
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Cache dir owner must be user which is specified in squid.conf:
http://i.imgur.com/AbYkE8M.png
11.12.15 2:27, juancho Alfonso пишет:
> Hey thereI have installed CentOS squid in 7I want to change the cache
> directory
> appears when I try to ini
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
http://wiki.squid-cache.org/ConfigExamples/Intercept/SslBumpExplicit
Feel free to read our good Wiki.
12.12.15 0:46, George Hollingshead пишет:
> Can any of you help a newb out here. I'm upgradihng from 3.0 to 3.5 so i
> can see https connects a
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
For malware checking we have two working (and performance) solutions:
http://wiki.squid-cache.org/ConfigExamples/ContentAdaptation/C-ICAP
http://wiki.squid-cache.org/ConfigExamples/ContentAdaptation/eCAP
No need to block any and all executables i
;
> thanks. Now I have to read more about available ICAP servers :)
>
> On Sun, Dec 13, 2015 at 7:32 PM, Yuri Voinov wrote:
>>
> For malware checking we have two working (and performance) solutions:
>
> http://wiki.squid-cache.org/ConfigExamples/ContentAdaptation/C-ICAP
>
one really existing
solution.
>
> thanks. Now I have to read more about available ICAP servers :)
>
> On Sun, Dec 13, 2015 at 7:32 PM, Yuri Voinov wrote:
>>
> For malware checking we have two working (and performance) solutions:
>
> http://wiki.squid-cache.org/ConfigExa
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
14.12.15 11:57, Amos Jeffries пишет:
> On 14/12/2015 10:39 a.m., Markus wrote:
>> Yuri Voinov wrote:
>>
>>> Think more. ALL ICAP solutions checks content. Diladele is not only
solution which checks content.
>>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Hi all.
Does anybody can tell me - is it possible to use subordinate secondary
CA in squid for SSL Bumping purpose?
I.e., we have self-signed primary CA for issue subordinate CA,
subordinate CA we install in squid's setup,
primary CA certificat
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Squid's source don't contain automatically installed autostart services
for all possible platforms. You can do it yourself.
15.12.15 21:15, sebastien.boulia...@cpu.ca пишет:
> Hi,
>
> I hope all is going perfectly for you.
>
> Im trying to install
quid-users [mailto:squid-users-boun...@lists.squid-cache.org] De
la part de Yuri Voinov
> Envoyé : 15 décembre 2015 10:35
> À : squid-users@lists.squid-cache.org
> Objet : Re: [squid-users] Installing Squid as a service on Oracle
Linux 7.2
>
>
> Squid's source don't cont
rg/listinfo/squid-users
>
>
>
> _______
> squid-users mailing list
> squid-users@lists.squid-cache.org
> http://lists.squid-cache.org/listinfo/squid-users
-BEGIN PGP SIGNATURE-
Version: GnuPG v2
iQEcBAEBCAAGBQJWcH7uAAoJENNXIZxhPexG
gt; I tried the squid.service from the yum package (v3.3.8) but it didn’t
work.
>
> Thanks
>
> Sébastien
> De : squid-users [mailto:squid-users-boun...@lists.squid-cache.org] De
la part de Yuri Voinov
> Envoyé : 15 décembre 2015 10:35
> À : squid-users@lists.squid-cache.org
&g
ust did a yum –y install squid-3.5.11 and I got the squid.service…
>
> All is perfect now.
>
> Thanks anyways.
>
> Sébastien
>
>
> De : squid-users [mailto:squid-users-boun...@lists.squid-cache.org] De
la part de Yuri Voinov
> Envoyé : 15 décembre 2015 15:58
> À : squ
901 - 1000 of 1449 matches
Mail list logo
