Amos Jeffries wrote:
> >
> >>> Apparently so, but as I said, the very same client software
> >>> does work with the old "ntlm_auth" helper and does not work
> >>> with the new ntlm_smb_lm_auth one.
> >>>
> >>> That's why I am saying that the problem is on the
> >>> authenticator side and not on t
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 7/10/2014 6:07 p.m., Victor Sudakov wrote:
> Amos Jeffries wrote:
>
> [dd]
>
>>> Apparently so, but as I said, the very same client software
>>> does work with the old "ntlm_auth" helper and does not work
>>> with the new ntlm_smb_lm_auth one.
>>>
Amos Jeffries wrote:
[dd]
> > Apparently so, but as I said, the very same client software does
> > work with the old "ntlm_auth" helper and does not work with the
> > new ntlm_smb_lm_auth one.
> >
> > That's why I am saying that the problem is on the authenticator
> > side and not on the client
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 6/10/2014 9:22 p.m., Ahmed Allzaeem wrote:
> Hi Guys ,
>
> Im trying to use squid3.head to get benefit of large rock.
>
> I tried many times but I find that squid get hang after sometime.
>
Since HEAD is "alpha" code version please try to debug
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 7/10/2014 5:08 p.m., Victor Sudakov wrote:
> James Harper wrote:
>>> No, adding Basic is not an option because I will have to
>>> provide special "proxy passwords" to the users, or make them
>>> enter their Windows passwords by hand. This is highly
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 7/10/2014 5:16 p.m., Victor Sudakov wrote:
> Amos Jeffries wrote:
>
> I have never used the helper provided by Samba, and I am
> not willing to start using it.
>
> I don't want to install Samba on a proxy server, maintain a
>>>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Amos Jeffries wrote:
> >>>
> >>> I have never used the helper provided by Samba, and I am not
> >>> willing to start using it.
> >>>
> >>> I don't want to install Samba on a proxy server, maintain a
> >>> smb.conf and TDB databases there, join a do
James Harper wrote:
> > No, adding Basic is not an option because I will have to provide
> > special "proxy passwords" to the users, or make them enter their
> > Windows passwords by hand. This is highly undesirable. Once they
> > logon into Windows, they must have (or not have) Web access
> > tran
Hi All,
We have a weird issue where https sites apparently don't respond (get message
"this page can't be displayed"). This mainly affects google websites and to a
lesser affect youtube. It has been reported it may have affected some banking
sites but this is unconfirmed. We are running centos
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 7/10/2014 3:52 p.m., Victor Sudakov wrote:
> Amos Jeffries wrote:
>>>
>>> I have never used the helper provided by Samba, and I am not
>>> willing to start using it.
>>>
>>> I don't want to install Samba on a proxy server, maintain a
>>> smb.con
> No, adding Basic is not an option because I will have to provide
> special "proxy passwords" to the users, or make them enter their
> Windows passwords by hand. This is highly undesirable. Once they
> logon into Windows, they must have (or not have) Web access
> transparently.
>
> If you know ho
Amos Jeffries wrote:
> >
> > I have never used the helper provided by Samba, and I am not
> > willing to start using it.
> >
> > I don't want to install Samba on a proxy server, maintain a
> > smb.conf and TDB databases there, join a domain, see hundreds of
> > winbindd processes etc.
>
> Thats
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 7/10/2014 9:53 p.m., Ahmed Allzaeem wrote:
> Hi ,
>
> I have 1 single ipv4 ip and have many ipv6 ips
>
> I need to listen on the ipv4 on many ports
>
> As an example
>
> 1.1.1.1:4
>
> 1.1.1.1:40001
>
> 1.1.1.1:40002
>
>
>
> In correspon
>
> Does it have sense to keep trying to do https interception with the arrive of
> pinning and all that things that prevent this kind of activities ?
>
I think if you give it some time there will be commercial pressure to allow
override of pinning.
I mean, you are only ever going to do SSL in
I have been trying with different versions of squid doing https
interception.
With some brosers versions work, with others doesn't.
Does it have sense to keep trying to do https interception with the arrive
of pinning and all that things that prevent this kind of activities ?
Maybe it's a good t
Hi ,
I have 1 single ipv4 ip and have many ipv6 ips
I need to listen on the ipv4 on many ports
As an example
1.1.1.1:4
1.1.1.1:40001
1.1.1.1:40002
In corresponding I need each ipv4:port to be tcp_outgoing to different ipv6
address
I have about 3 ips.
Can I know why the config bel
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 7/10/2014 4:39 a.m., Victor Sudakov wrote:
> Dear Francesco,
>
> I have never used the helper provided by Samba, and I am not
> willing to start using it.
>
> I don't want to install Samba on a proxy server, maintain a
> smb.conf and TDB databases
Dear Francesco,
You are the author of
squid-2.7.STABLE9/helpers/ntlm_auth/SMB/ntlm_auth.c and
squid-3.4.8/helpers/ntlm_auth/smb_lm/ntlm_smb_lm_auth.cc !
I am so glad to meet you!
I have tried to diff the above sources. Why are they so different? Why
all the change? The first works while the seco
Dear Francesco,
I have never used the helper provided by Samba, and I am not willing
to start using it.
I don't want to install Samba on a proxy server, maintain a smb.conf
and TDB databases there, join a domain, see hundreds of winbindd
processes etc.
The ntlm_auth plugin has always been suffi
> I don't know i am correct or not but in /etc/init/squid3.conf i see
> following
> lines
> env CONFIG="/etc/squid3/squid.conf"
> env SQUID_ARGS="-YC"
>
> so i have added following line
> env LANG=C
>
> correct ? does not need double qotation mark ?
That should do it.
Marcus
>
>
> --
> View this
I don't know i am correct or not but in /etc/init/squid3.conf i see following
lines
env CONFIG="/etc/squid3/squid.conf"
env SQUID_ARGS="-YC"
so i have added following line
env LANG=C
correct ? does not need double qotation mark ?
--
View this message in context:
http://squid-web-proxy-cache.1
Thanks for the tip .
1. Is there any way to detect that what is current LANG without need to
restart squid ?
2. Is there any way to put that string inside /etc/init/squid.conf ? how ?
Thanks again .
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/High-cpu-us
er.. are you not using the helper provided by Samba? That is the most
reliable way to do NTLM authentication in squid (and most other Linux
software)
On Mon, Oct 6, 2014 at 11:08 AM, Victor Sudakov
wrote:
> Francesco,
>
> What do you mean by "client"? Absolutely everything in this lab setup
> is
Hi
After upgrading squid 3.4.4 to 3.4.7 (64Bit, self-compiled, the same
configure-options, the same config-file, ssl_bump with "ssl_bump
server-first all" enabled), I'm no more able to access bumped
https-sites because of a TCP_DENIED/403.
#-- relevant parts of squid.conf ---
Francesco,
What do you mean by "client"? Absolutely everything in this lab setup
is the same, including the browser.
The only difference is the ntlm plugin binary (ntlm_auth taken from
the old squid and ntlm_smb_lm_auth from the new one).
In fact, I replaced the binary and restarted squid.
Kink
On 01.10.14 13:54, Amos Jeffries wrote:
I recently opened a bug about this, that I will update now:
http://bugs.squid-cache.org/show_bug.cgi?id=4088
Thank you for the reminder. I will start work on this next.
I'm afraid the patch you added to that bug report doesn't work for me
(in fact, i
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 6/10/2014 9:01 p.m., Omid Kosari wrote:
> Dear Amos
>
> What's your idea about Marcus comment ?
>
It was a new solution to me.
I think I understand the details behind it (unicode charset size) and
agree it is worth doing if you can.
Amos
-
Whoops, sorry for the empty message.
This seems like a broken client. Can you check whether the client
sending that was a legitimate one?
On Mon, Oct 6, 2014 at 10:24 AM, Victor Sudakov
wrote:
> Colleagues,
>
> The NTLM (LM) plugin in squid27 worked perfectly while the NTLM plugin in
> squid34 is
Hi,
On Mon, Oct 6, 2014 at 10:24 AM, Victor Sudakov
wrote:
> Colleagues,
>
> The NTLM (LM) plugin in squid27 worked perfectly while the NTLM plugin in
> squid34 is obviously broken.
>
> I am attaching two log files, one of the old plugin and the other of
> the new one. Could someone please have
Hi Guys ,
Im trying to use squid3.head to get benefit of large rock.
I tried many times but I find that squid get hang after sometime.
I just need someone who tried large rock on smp and want from him the squid
3.head version and squid.conf he used if possible.
Appreciate ur help
regar
Eliezer Croitoru-2 wrote
> I was also working on a deb based build (for ubuntu) and now it's on
> the alpha stages(not released yet)
I am really happy and excited to find that . You will be added to my HEROs
list ;)
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabbl
Dear Amos
What's your idea about Marcus comment ?
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/High-cpu-usage-by-re-search-internal-tp4667550p4667689.html
Sent from the Squid - Users mailing list archive at Nabble.com.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 6/10/2014 4:24 p.m., Robert Watson wrote:
> still trying to get this working. To eliminate the self signed
> certificate issue, I got a official signed certificate from
> Starfield Tech. LLC. They've sent two certifcates but I'm unsure
> how to use
33 matches
Mail list logo
