RE: [squid-users] Unable to download files over 2GB of size
fre 2007-05-04 klockan 20:00 -0700 skrev Sathyan, Arjonan: > Henrik, > > Please find the version details of my Squid Thanks. Looks fine. And the squidclient output? Regards Henrik signature.asc Description: Detta är en digitalt signerad meddelandedel
Re: [squid-users] Authentication Override
fre 2007-05-04 klockan 14:44 -0400 skrev Chris Nighswonger: > I never have been real clear on the difference between realm and > domain. What is it? realm is the identification of the protection space on the server (or possibly servers, if using Digest) The Windows Domain is a division of users for administrative purposes, not related to the server other than that there must at least be an administrative trust between the administrative domain of the server and the administrative domain of the user. Quote from RFC2617 The realm directive (case-insensitive) is required for all authentication schemes that issue a challenge. The realm value (case-sensitive), in combination with the canonical root URL (the absoluteURI for the server whose abs_path is empty; see section 5.1.2 of [2]) of the server being accessed, defines the protection space. These realms allow the protected resources on a server to be partitioned into a set of protection spaces, each with its own authentication scheme and/or authorization database. The realm value is a string, generally assigned by the origin server, which may have additional semantics specific to the authentication scheme. Note that there may be multiple challenges with the same auth-scheme but different realms. Regards Henrik signature.asc Description: Detta är en digitalt signerad meddelandedel
Re: AW: [squid-users] Help Me Please
Dear NAsser salm in neshoon mideh porte 3128 shoma ownere digei dareh. masalan root. In yek joor bug ham ast. avvalan system ro az harchi squide paak kon. ba 2.6 dobareh shoroo kon. moshkel hal mishe man ghablan ino roo ubuntu bsd dashtam. kheili ham ba owner haa var raftam, akharesh avazesh kardam hal shod. vali ghablesh donbale squid begard, makhsoosan age too nasb squid nasb shode, badesham khodet nasb kardi dobaareh ... On 5/5/07, Nasser Malakooti <[EMAIL PROTECTED]> wrote: Hi My OS is Redhat enterprise 4 AS.My Squid is squid-2.5.STABLE6-3.4E.11. I do following task. [EMAIL PROTECTED] ~]# service squid status squid is stopped [EMAIL PROTECTED] ~]# service squid start Starting squid:[FAILED] [EMAIL PROTECTED] ~]# service squid status squid is stopped [EMAIL PROTECTED] ~]# squid [EMAIL PROTECTED] ~]# squid [EMAIL PROTECTED] ~]# squid 2007/05/05 08:19:10| Squid is already running! Process ID 16226 now I see log files access.log is empety store.log is empety but in cache.log exist following text 2007/05/05 08:19:01| Starting Squid Cache version 2.5.STABLE6 for i386- redhat-linux-gnu... 2007/05/05 08:19:01| Process ID 16226 2007/05/05 08:19:01| With 1024 file descriptors available 2007/05/05 08:19:01| Performing DNS Tests... 2007/05/05 08:19:02| Starting Squid Cache version 2.5.STABLE6 for i386- redhat-linux-gnu... 2007/05/05 08:19:02| Process ID 16230 2007/05/05 08:19:02| With 1024 file descriptors available 2007/05/05 08:19:02| Performing DNS Tests... 2007/05/05 08:19:01| Successful DNS name lookup tests... 2007/05/05 08:19:01| DNS Socket created at 0.0.0.0, port 32771, FD 4 2007/05/05 08:19:01| Adding nameserver 194.225.90.4 from /etc/resolv.conf 2007/05/05 08:19:01| Adding nameserver 4.2.2.3 from /etc/resolv.conf 2007/05/05 08:19:01| User-Agent logging is disabled. 2007/05/05 08:19:01| Referer logging is disabled. 2007/05/05 08:19:01| Unlinkd pipe opened on FD 9 2007/05/05 08:19:01| Swap maxSize 2048000 KB, estimated 157538 objects 2007/05/05 08:19:01| Target number of buckets: 7876 2007/05/05 08:19:01| Using 8192 Store buckets 2007/05/05 08:19:01| Max Mem size: 174080 KB 2007/05/05 08:19:01| Max Swap size: 2048000 KB 2007/05/05 08:19:01| Rebuilding storage in /cache/ (CLEAN) 2007/05/05 08:19:01| Using Least Load store dir selection 2007/05/05 08:19:01| Current Directory is /root 2007/05/05 08:19:01| Loaded Icons. 2007/05/05 08:19:03| Accepting HTTP connections at 0.0.0.0, port 3128, FD 10. 2007/05/05 08:19:03| Accepting ICP messages at 0.0.0.0, port 3130, FD 11. 2007/05/05 08:19:03| WCCP Disabled. 007/05/05 08:19:03| Ready to serve requests. 2007/05/05 08:19:02| Successful DNS name lookup tests... 2007/05/05 08:19:02| DNS Socket created at 0.0.0.0, port 32772, FD 4 2007/05/05 08:19:02| Adding nameserver 194.225.90.4 from /etc/resolv.conf 2007/05/05 08:19:02| Adding nameserver 4.2.2.3 from /etc/resolv.conf 2007/05/05 08:19:02| User-Agent logging is disabled. 2007/05/05 08:19:02| Unlinkd pipe opened on FD 9 2007/05/05 08:19:02| Swap maxSize 2048000 KB, estimated 157538 objects 2007/05/05 08:19:02| Target number of buckets: 7876 2007/05/05 08:19:02| Using 8192 Store buckets 2007/05/05 08:19:02| Max Mem size: 174080 KB 2007/05/05 08:19:02| Max Swap size: 2048000 KB 2007/05/05 08:19:02| Rebuilding storage in /cache/ (DIRTY) 2007/05/05 08:19:02| Using Least Load store dir selection 2007/05/05 08:19:02| Current Directory is /root 2007/05/05 08:19:02| Loaded Icons. 2007/05/05 08:19:04| commBind: Cannot bind socket FD 10 to *:3128: (98) Addressalready in use FATAL: Cannot open HTTP Port Squid Cache (Version 2.5.STABLE6): Terminated abnormally. CPU Usage: 0.017 seconds = 0.012 user + 0.005 sys Maximum Resident Size: 0 KB Page faults with physical i/o: 0 Memory usage for squid via mallinfo(): total space in arena:2128 KB Ordinary blocks: 2091 KB 2 blks Small blocks: 0 KB 1 blks Holding blocks: 200 KB 1 blks Free Small blocks: 0 KB Free Ordinary blocks: 36 KB Total in use:2291 KB 108% Total free:36 KB 2% 2007/05/05 08:19:04| Done scanning /cache/ swaplog (0 entries) 2007/05/05 08:19:04| Finished rebuilding storage from disk. 2007/05/05 08:19:04| 0 Entries scanned 2007/05/05 08:19:04| 0 Invalid entries. 2007/05/05 08:19:04| 0 With invalid flags. 2007/05/05 08:19:04| 0 Objects loaded. 2007/05/05 08:19:04| 0 Objects expired. 2007/05/05 08:19:04| 0 Objects cancelled. 2007/05/05 08:19:04| 0 Duplicate URLs purged. 2007/05/05 08:19:04| 0 Swapfile clashes avoided. 2007/05/05 08:19:04| Took 3.0 seconds ( 0.0 objects/sec). 2007/05/05 08:19:04| Beginning Validation Procedure 2007/05/05 08:19:04| Completed Validation Procedure 2007/05/05 08:19:04| Validated 0 Entries 2007/05/05 08:19:04| store_swap_size = 0k 2007/05/05 08:19:04| storeLateRelease: released
Re: [squid-users] Odd port behavior from squid
fre 2007-05-04 klockan 12:11 -0500 skrev Pat Riehecky: > [44165032.82] Dropped default (OUTPUT): IN= OUT=eth0 > SRC=MY.PROXY.IP.ADDRESS DST=SOME.RANDOM.IP.ADDR LEN=40 TOS=0x00 > PREC=0x00 TTL=64 ID=41807 DF PROTO=TCP SPT=3128 DPT=2660 WINDOW=7140 > RES=0x00 ACK PSH FIN URGP=0 For some reason SOME.RANDOM.IP.ADDR has been allowed to contact your Squid on port 3128, but the response is not allowed out. Make sure your iptables ruleset only allows trusted clients to connect to your Squid port (INPUT ruleset). Regards Henrik signature.asc Description: Detta är en digitalt signerad meddelandedel
Re: [squid-users] Make install error
ons 2007-05-02 klockan 13:46 +0800 skrev squid squid: > Hi, > > Both man statfs and statvfs returns No manual entry and I am trying to > compile on Solaris 2.5.1. Kindly advise what are the things to look out for > in config.log to determine the problem. Thank you. Without access to a Solaris 2.5.1 machine it's hard to advise in detail what to do, but I guess if everything else fails you can try modifying the failing functions and hardcode some values for the filesystem block size. But it is a bit odd.. this code is very old, and many users have been running Squid on Solaris without running into this problem. Checking Solaris 2.5.1 documentation. The statvfs call is there. http://docs.sun.com/app/docs/doc/802-1930-02/6i5u95ja3?a=view Probably configure fails to detect the availability of the statvfs call for some reason. grep STATVFS include/autoconf.h statfs is not documented, but since statvfs seems exists (at least according to the documentation) we are not that interested in anything relating to statfs and should instead focus on why statvfs wasn't detected. Check your config.log file to see if there is any report relating to statvfs() and/or sys/statvfs.h You can also try defining HAVE_STATVFS and HAVE_SYS_STATVFS_H to 1 in include/autoconf.h #define HAVE_STATVFS 1 #define HAVE_SYS_STATVFS_H 1 Regards Henrik signature.asc Description: Detta är en digitalt signerad meddelandedel
[squid-users] spmmer abusing my proxy server
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Dear All, One of my clients is abusing my proxy server to sent spams to different groups in the internet. But I have only been given the details below. I understand that there should be some kind of X-Forwarded-For IP address right? How do I get the IP of the offending user besides checking all my access logs? Can somebody shed some light into how to prevent these incidents from recurring in the future? Thanks in advance! SPAM Details: Path: authen.puce.readfreenews.net!green.octanews.net!news-out.octanews.net!news.glorb.com!postnews.google.com!u30g2000hsc.googlegroups.com!not-for-mail From: [EMAIL PROTECTED] Newsgroups: alt.comp.freeware Subject: http://www.jobsnepal.info/idevaffiliate/idevaffiliate.php?id=1515 Date: 4 May 2007 20:11:14 -0700 Organization: http://groups.google.com Lines: 6 Message-ID: <[EMAIL PROTECTED]> NNTP-Posting-Host: 202.xx.xx.xx (IP of my proxy server) Mime-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" X-Trace: posting.google.com 1178334675 27786 127.0.0.1 (5 May 2007 03:11:15 GMT) X-Complaints-To: [EMAIL PROTECTED] NNTP-Posting-Date: Sat, 5 May 2007 03:11:15 + (UTC) User-Agent: G2/1.0 X-HTTP-UserAgent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1),gzip(gfe),gzip(gfe) X-HTTP-Via: 1.1 myproxy.com:3128 (squid/2.6.STABLE9) Complaints-To: [EMAIL PROTECTED] Injection-Info: u30g2000hsc.googlegroups.com; posting-host=202.xx.xx.xx (IP of my proxy); posting-account=qJA5Sw0EwNnRGJ7bd6V3Qkylk050 Xref: authen.puce.readfreenews.net alt.comp.freeware:544238 Specialize in website design, web hosting, database design and internet marketing to improve your web position. Services include meta tag programming,online job and many more http://www.jobsnepal.info/idevaffiliate/idevaffiliate.php?id=1785 - -- With best regards and good wishes, Yours sincerely, Tek Bahadur Limbu (TAG/TDG Group) Jwl Systems Department Worldlink Communications Pvt. Ltd. Jawalakhel, Nepal http://www.wlink.com.np -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.2.2 (FreeBSD) iD8DBQFGPW0AVrOl+eVhOvYRAgD/AJ9qVREDs4qsyg4u7AaqnIEVbS1K5ACeORdr 6NOkWgrczzJjPb2M6TPCEvA= =o/1v -END PGP SIGNATURE-
Re: [squid-users] spmmer abusing my proxy server
On Sun, May 06, 2007, Tek Bahadur Limbu wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > Dear All, > > One of my clients is abusing my proxy server to sent spams to different > groups in the internet. > But I have only been given the details below. > > I understand that there should be some kind of X-Forwarded-For IP address > right? How do I get the IP of the offending user besides checking all my > access logs? The X-Forwarded-For header is set for HTTP requests. This news post is done via some HTTP to NNTP gateway program/script and thus doesn't automagically mean the X-Forwarded-For IP will be in there. You're more than likely going to have to run through your access logs. Adrian > > Can somebody shed some light into how to prevent these incidents from > recurring in the future? > Thanks in advance! > > SPAM Details: > > Path: > authen.puce.readfreenews.net!green.octanews.net!news-out.octanews.net!news.glorb.com!postnews.google.com!u30g2000hsc.googlegroups.com!not-for-mail > From: [EMAIL PROTECTED] > Newsgroups: alt.comp.freeware > Subject: > http://www.jobsnepal.info/idevaffiliate/idevaffiliate.php?id=1515 > Date: 4 May 2007 20:11:14 -0700 > Organization: http://groups.google.com > Lines: 6 > Message-ID: <[EMAIL PROTECTED]> > NNTP-Posting-Host: 202.xx.xx.xx (IP of my proxy server) > Mime-Version: 1.0 > Content-Type: text/plain; charset="iso-8859-1" > X-Trace: posting.google.com 1178334675 27786 127.0.0.1 (5 May 2007 > 03:11:15 GMT) > X-Complaints-To: [EMAIL PROTECTED] > NNTP-Posting-Date: Sat, 5 May 2007 03:11:15 + (UTC) > User-Agent: G2/1.0 > X-HTTP-UserAgent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; > SV1),gzip(gfe),gzip(gfe) > X-HTTP-Via: 1.1 myproxy.com:3128 (squid/2.6.STABLE9) > Complaints-To: [EMAIL PROTECTED] > Injection-Info: u30g2000hsc.googlegroups.com; > posting-host=202.xx.xx.xx (IP of my proxy); > posting-account=qJA5Sw0EwNnRGJ7bd6V3Qkylk050 > Xref: authen.puce.readfreenews.net alt.comp.freeware:544238 > > > Specialize in website design, web hosting, database design and > internet marketing to improve your web position. Services include meta > tag programming,online job and many more > http://www.jobsnepal.info/idevaffiliate/idevaffiliate.php?id=1785 > > - -- > > > With best regards and good wishes, > > Yours sincerely, > > Tek Bahadur Limbu > > (TAG/TDG Group) > Jwl Systems Department > > Worldlink Communications Pvt. Ltd. > > Jawalakhel, Nepal > > http://www.wlink.com.np > -BEGIN PGP SIGNATURE- > Version: GnuPG v1.4.2.2 (FreeBSD) > > iD8DBQFGPW0AVrOl+eVhOvYRAgD/AJ9qVREDs4qsyg4u7AaqnIEVbS1K5ACeORdr > 6NOkWgrczzJjPb2M6TPCEvA= > =o/1v > -END PGP SIGNATURE- -- - Xenion - http://www.xenion.com.au/ - VPS Hosting - Commercial Squid Support - - $25/pm entry-level bandwidth-capped VPSes available in WA -
