Re: [squid-users] via off and forwarding loop
On 11/09/11 16:33, jiluspo wrote: If via off how squid can detect forwarding loops? Any other alternatives than denying squid ip as source? No. Loop prevention and pathway capability detection are the purposes of Via:. Why did you disable it? Amos -- Please be using Current Stable Squid 2.7.STABLE9 or 3.1.15 Beta testers wanted for 3.2.0.11
[squid-users] via off and forwarding loop
If via off how squid can detect forwarding loops? Any other alternatives than denying squid ip as source? -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.
Re: [squid-users] Via off not working
Hi, You all were right, via was turned off and my problem was somewhere else. In order to make it completely anonymous I had to add this to squid.conf: request_header_access Allow allow all request_header_access Authorization allow all request_header_access WWW-Authenticate allow all request_header_access Proxy-Authorization allow all request_header_access Proxy-Authenticate allow all request_header_access Cache-Control allow all request_header_access Content-Encoding allow all request_header_access Content-Length allow all request_header_access Content-Type allow all request_header_access Date allow all request_header_access Expires allow all request_header_access Host allow all request_header_access If-Modified-Since allow all request_header_access Last-Modified allow all request_header_access Location allow all request_header_access Pragma allow all request_header_access Accept allow all request_header_access Accept-Charset allow all request_header_access Accept-Encoding allow all request_header_access Accept-Language allow all request_header_access Content-Language allow all request_header_access Mime-Version allow all request_header_access Retry-After allow all request_header_access Title allow all request_header_access Connection allow all request_header_access Proxy-Connection allow all request_header_access User-Agent allow all request_header_access Cookie allow all request_header_access All deny all Thanks for you help
Re: [squid-users] Via off not working
On Tue, 4 Aug 2009 22:33:41 +0300, George wrote: > Hi, > > On another server I have the same setup working and not showing the > Warning. When I go to www.whatismyipaddress.com it does not detect me > as proxy. > > On the new server with this warning I am detected as proxy thus Via is > still on. www.whatismyipaddress.com uses many other means than just Via to figure out if a proxy is present. Thus your logic is flawed whether or not your are right. > > How do I disable it? > You just did. IIRC with "via off" squid does not _add_ a new Via header and not add its own details to existing Via. You may still be using a proxy from some other network between you and whatismyipaddress.com, or they may be finding any one of a number of other small details. My advice: don't be ashamed of the proxy. Only change the absolute minimum of client information. Both the request and reply are technically the intellectual property of someone else. Amos > Please advise > > On Tue, Aug 4, 2009 at 10:31 PM, Leonardo > Rodrigues wrote: >> George escreveu: >>> >>> I compiled squid with --enable-http-violations. Whenever I put in >>> squid.conf: >>> via off >>> When I start squid it says: WARNING: HTTP requires the use of Via >>> and it's still on >>> >>> What did I do wrong? >>> >> >> You did wrong just on the interpretation of what you're seeing on >> cache.log. >> >> WARNING is not an ERROR. It's just WARNING you that 'HTTP requires the >> use >> of Via' ... and which you have just disabled. >> >> There's nothing wrong, you've successfully disabled the Via thing. >>
Re: [squid-users] Via off not working
Here I just use this and never had problems: acl mynetwork src 192.168.0.0/24 header_access Via Allow mynetwork Via Deny all header_access X-Forwarded-For Allow mynetwork X-Forwarded-For Deny all On Tue, Aug 4, 2009 at 4:33 PM, George wrote: > Hi, > > On another server I have the same setup working and not showing the > Warning. When I go to www.whatismyipaddress.com it does not detect me > as proxy. > > On the new server with this warning I am detected as proxy thus Via is still > on. > > How do I disable it? > > Please advise > > On Tue, Aug 4, 2009 at 10:31 PM, Leonardo > Rodrigues wrote: >> George escreveu: >>> >>> I compiled squid with --enable-http-violations. Whenever I put in >>> squid.conf: >>> via off >>> When I start squid it says: WARNING: HTTP requires the use of Via >>> and it's still on >>> >>> What did I do wrong? >>> >> >> You did wrong just on the interpretation of what you're seeing on >> cache.log. >> >> WARNING is not an ERROR. It's just WARNING you that 'HTTP requires the use >> of Via' ... and which you have just disabled. >> >> There's nothing wrong, you've successfully disabled the Via thing. >> >
Re: [squid-users] Via off not working
tis 2009-08-04 klockan 22:09 +0300 skrev George: > I compiled squid with --enable-http-violations. Whenever I put in squid.conf: > via off > When I start squid it says: WARNING: HTTP requires the use of Via > and it's still on What does the following URL return? http://devel.squid-cache.org/cgi-bin/test Regards Henrik
Re: [squid-users] Via off not working
Hi, On another server I have the same setup working and not showing the Warning. When I go to www.whatismyipaddress.com it does not detect me as proxy. On the new server with this warning I am detected as proxy thus Via is still on. How do I disable it? Please advise On Tue, Aug 4, 2009 at 10:31 PM, Leonardo Rodrigues wrote: > George escreveu: >> >> I compiled squid with --enable-http-violations. Whenever I put in >> squid.conf: >> via off >> When I start squid it says: WARNING: HTTP requires the use of Via >> and it's still on >> >> What did I do wrong? >> > > You did wrong just on the interpretation of what you're seeing on > cache.log. > > WARNING is not an ERROR. It's just WARNING you that 'HTTP requires the use > of Via' ... and which you have just disabled. > > There's nothing wrong, you've successfully disabled the Via thing. >
Re: [squid-users] Via off not working
George escreveu: I compiled squid with --enable-http-violations. Whenever I put in squid.conf: via off When I start squid it says: WARNING: HTTP requires the use of Via and it's still on What did I do wrong? You did wrong just on the interpretation of what you're seeing on cache.log. WARNING is not an ERROR. It's just WARNING you that 'HTTP requires the use of Via' ... and which you have just disabled. There's nothing wrong, you've successfully disabled the Via thing. -- Atenciosamente / Sincerily, Leonardo Rodrigues Solutti Tecnologia http://www.solutti.com.br Minha armadilha de SPAM, NÃO mandem email gertru...@solutti.com.br My SPAMTRAP, do not email it
[squid-users] Via off not working
Hi, I have squid 3 on centos 4.7. I compiled squid with --enable-http-violations. Whenever I put in squid.conf: via off When I start squid it says: WARNING: HTTP requires the use of Via and it's still on What did I do wrong? Please help Thanks
Re: [squid-users] Via off
header_access Via deny all header_access X-Forwarded-For deny all .vp Should the documentation on the configuration file be fixed ?. It says "If set, Squid will include a Via header in requests and replies.". But reply seems to have the Via header when the directive is set to off. FIXED in another way: http://www.squid-cache.org/bugs/show_bug.cgi?id=2003 thanks for pointing this. I thought as there is already a feature to control the via header using the acl, fixing the code would be redundent. -logu
Re: [squid-users] Via off
"Logu" <[EMAIL PROTECTED]> writes: >>I did this, and it works: >> >> header_access Via deny all >> header_access X-Forwarded-For deny all >> >> .vp >> > > Should the documentation on the configuration file be fixed ?. It says > "If set, Squid will include a Via header in requests and replies.". But > reply seems to have the Via header when the directive is set to off. FIXED in another way: http://www.squid-cache.org/bugs/show_bug.cgi?id=2003 > -logu
Re: [squid-users] Via off
I did this, and it works: header_access Via deny all header_access X-Forwarded-For deny all .vp Should the documentation on the configuration file be fixed ?. It says "If set, Squid will include a Via header in requests and replies.". But reply seems to have the Via header when the directive is set to off. -logu
RE: [squid-users] Via off
On 29-Aug-07 My Secret NSA Wiretap Overheard Vadim Pushkin Saying : > I did this, and it works: > > > header_access Via deny all > header_access X-Forwarded-For deny all > > > .vp > Excellent! Thank You to all who responded on this! Nicole > > >>From: Sekar <[EMAIL PROTECTED]> > >>Hello all, >> >>I have switched off the "via" header using the squid configuration file, >>but when a request is made the reply has this header ( Via: 1.0 >>xyz.abc.com:3128 (squid/2.6.STABLE14) . But the manual says that will >>include a Via header in requests and replies only when the directive is set >>to "on" >> >># TAG: via on|off >># If set (default), Squid will include a Via header in requests and >># replies. >> >>Do we need to configure anything else to disable the via information in >>squid reply header. >> >>Thanks in advance, >>Sekar >> -- |\ __ /| (`\ | o_o |__ ) ) // \\ - [EMAIL PROTECTED] - Powered by FreeBSD - -- "The term "daemons" is a Judeo-Christian pejorative. Such processes will now be known as "spiritual guides" - Politicaly Correct UNIX Page
RE: [squid-users] Via off
I did this, and it works: header_access Via deny all header_access X-Forwarded-For deny all .vp From: Sekar <[EMAIL PROTECTED]> Hello all, I have switched off the "via" header using the squid configuration file, but when a request is made the reply has this header ( Via: 1.0 xyz.abc.com:3128 (squid/2.6.STABLE14) . But the manual says that will include a Via header in requests and replies only when the directive is set to "on" # TAG: via on|off # If set (default), Squid will include a Via header in requests and # replies. Do we need to configure anything else to disable the via information in squid reply header. Thanks in advance, Sekar
[squid-users] Via off
Hello all, I have switched off the "via" header using the squid configuration file, but when a request is made the reply has this header ( Via: 1.0 xyz.abc.com:3128 (squid/2.6.STABLE14) . But the manual says that will include a Via header in requests and replies only when the directive is set to "on" # TAG: via on|off # If set (default), Squid will include a Via header in requests and # replies. Do we need to configure anything else to disable the via information in squid reply header. Thanks in advance, Sekar