[squid-users] dubt about kerberos authentication in the Squid 3

Hi I have many dubt about kerberos authentication in the Squid 3 (3.4.8) on Debian 8. I'm using Samba 4 (4.2.1) as DC. If I to join Squid Server in the Domain (net ads join) I don't need to execute the command-line msktutil as bellow ? msktutil -c -b "CN=COMPUTERS" -s HTTP/squidproxy.example.loc

Re: [squid-users] Yet another store_id question HIT MISS

Amos Jeffries wrote > On 19/08/2016 2:15 a.m., Omid Kosari wrote: >> I was correct . >> >> If one of following conditions happens then the mentioned urls will not >> cache . >> >> 1-in squid.conf have this line >> acl storeiddomainregex dstdom_regex >> ^igcdn(\-photos|\-videos)[a-z0-9\-]{0,9}\.ak

Re: [squid-users] Yet another store_id question HIT MISS

I have also tested with several browsers, PCs etc . Also i have disabled every refresh pattern except default squid rules as like as yours . Same result . The only way to get hits are the way i mentioned in http://squid-web-proxy-cache.1019090.n4.nabble.com/Yet-another-store-id-question-HIT-MISS-

[squid-users] Squid Samba 4 and ntlm_auth concurrency question

I'm currently using the binary version of squid provided by yum with RHEL 7.2 (3.3.8) with Samba 4's winbind ntlm_auth to authenticate against AD which is working fine auth_param negotiate program /usr/bin/ntlm_auth --helper-protocol=gss-spnego auth_param negotiate children 250 startup=2 i

Re: [squid-users] training

On 19/08/2016 7:28 p.m., sallo baloch wrote: > dear > > sir how to learn squid proxy from scratch > You can find there links to lots of documentation from a Beginners Manual to Squid-3 (3.1, but most of it it still very relevant). The Squid FAQ, wiki, etc. Thos

Re: [squid-users] squid shutdown or reconfigure in Multi-instance environment 3.5.2

On 20/08/2016 11:48 a.m., --Ahmad-- wrote: > Hi Squid-users > == > I’m using squid 3.5.2 as multi instances . > There were problems with -n up to 3.5.9. Though please upgrade right to 3.5.19 or 3.5.20 to avoid the major security issues that have been fixed this past year. NP: if you have

Re: [squid-users] AD Ldap (automatically take the user that is logging on PC)

On 20/08/2016 7:13 a.m., erdosain9 wrote: > For eg., in all the config that i read is necessary a file call something > like squid.keytab... > its possible just make a user in AD like "squid", and then just log the > squid in the Ad??? or is mandatory generating this file??? > thanks Perhapse you

Re: [squid-users] ssl-bump / https traffic not cacheing

On 20/08/2016 2:56 p.m., JR Dalrymple wrote: > I'm sure I'm missing something stupid, but https traffic just isn't > caching. I really want to cache https alongside http as this project is for > a customer who lives in the sticks and pays dearly for every byte. > > 1471660884.894 11402 172.22.19.

Re: [squid-users] Squid 2.7.s9 HTTPS-proxying - hint welcome

On 19/08/2016 10:42 p.m., Torsten Kuehn wrote: > Hi, > > On 18/08/2016 6:32 a.m., Amos Jeffries wrote: > >>> I imagine layouts where the encrypted traffic itself gets stored >> no way for Squid to know if a previous encrypted stream is reusable. >> To squid it is just a random stream of opaque by

Re: [squid-users] HTTPS - THE PROXY SERVER IS REFUSING CONNECTIONS

On 20/08/2016 4:07 a.m., adeg...@gmail.com wrote: > Thank you VERY MUCH L.P.H. van Belle ! > > > > I tried with or without changes but I don't have good result : > > I still have " THE PROXY SERVER IS REFUSING CONNECTIONS" for https > websites... > > I can't understand why it doesn't work. >

Re: [squid-users] communication with parent proxy using ssl

On 20/08/2016 6:23 a.m., Jānis wrote: > Hi! > > may someone suggest some solution for traffic encryption between the > parent and "child" proxy based on squid's own functionality? Assumgin both are Squid; * child proxy simply has cache_peer ... parent ... ssl"