Re: [squid-users] FW: squid tproxy ssl-bump and Protocol error (TLS code: SQUID_ERR_SSL_HANDSHAKE)

On 3/10/2016 8:11 p.m., Vieri wrote: > > > Hi, > > - Original Message - >> From: Yuri Voinov >> > >>> Why is Squid negotiating cipher RC4-MD5 which is reported >>> "insecure" and unsupported by the google web site?> Because your >>> antique client request it. XP

Re: [squid-users] IPv6 interception crash: Ip::Address::getInAddr : Cannot convert non-IPv4 to IPv4.

On 4/10/2016 4:12 a.m., Egerváry Gergely wrote: > Hi, > > I'm running on NetBSD 7-STABLE, with IPFilter 5.1 > (--enable-ipf-transparent) > > NAT interception rule: > rdr wm1 from 2001:738:7a00:a::/64 to any port = 80 -> > 2001:738:7a00:a::14 port 3128 tcp > > cache.log: > > 2016/10/03

Re: [squid-users] Large text ACL lists

Hi Nishant Thanks for the lead, I will have a look. Redis is also interesting in this case due to its ability to scan keys and iterate through keys with a wildcard and cursors. Redis looks like it's just what I need as I need to swap in and out sets of sites on demand. I have also been using

Re: [squid-users] Problem with Squid3 Caches

On Monday 03 October 2016 at 20:55:07, Jason Alexander wrote: > Greetings - > > I’m trying to install squid on an Ubuntu workstation in a VM. I install > squid but unable to initialize caches. I get the following error: > > FATAL: Bungled /etc/squid/squid.conf line 3467: cache_dir rock /ssd3

Re: [squid-users] handshake problems with stare and bump

On 10/03/2016 11:50 AM, Marc wrote: > 2) Squid forwards the Client Hello, including ciphers the host running > squid doesn't support (in my case, the DES and RC4 ones). This could > also potentially lead to problems. Why doesn't squid filter them out > from the Client Hello sent from squid to the

Re: [squid-users] Problem with Squid3 Caches

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Show config. 04.10.2016 0:55, Jason Alexander пишет: > Greetings - > > I’m trying to install squid on an Ubuntu workstation in a VM. I install squid but unable to initialize caches. I get the following error: > > Initializing the Squid cache

[squid-users] Problem with Squid3 Caches

Greetings - I’m trying to install squid on an Ubuntu workstation in a VM.  I install squid but unable to initialize caches.  I get the following error:Initializing the Squid cache with the command squid3 -f /etc/squid/squid.conf -z ..FATAL: Bungled /etc/squid/squid.conf line 3467: cache_dir rock

[squid-users] handshake problems with stare and bump

Hi, I've got an issue with squid stare and bump, hope someone can help! I'm staring and bumping everything, using transparent proxy on Fedora Core 24 using squid-3.5.20-1.fc24.x86_64 (see below for config). Now the client (iphone app) does TLS v1.0 and has the following ciphers in the Client

Re: [squid-users] Squid 3.5.21: ftp_port intercept doesn't work

On 10/03/2016 06:36 AM, oleg gv wrote: > I've setup in Squid 3.5.21 on my gateway : ftp_port 10.0.0.1:2121 > intercept and create nat rule to redirect from > port 21 to 2121 for client source address (for example 10.0.0.10) > > Then trying to go through browser to

Re: [squid-users] Squid crash - 3.5.21

On 10/03/2016 04:50 AM, Jasper Van Der Westhuizen wrote: > This morning I had some problems with some of our proxies. 2 Proxies in > cluster A crashed with the below errors. The shortly afterwards 4 in > cluster B did the same. Both clusters are configured to run their cache > in memory with SMP

Re: [squid-users] Large text ACL lists

On 10/02/2016 02:16 AM, Nishant Sharma wrote: Hi, On 2 October 2016 9:54:52 AM IST, Darren wrote: Hi I have now opened the Pandora box of writing my own helper as per Bobs suggestion. We are working on a redirector which we are currently using at around 100

Re: [squid-users] problem in configuring squid

On Monday 03 October 2016 at 17:03:13, Shark wrote: > I want to config squid to make "open proxy" for both http & https > I want make anonymous proxy, without decrypting traffic or etc, just change > ip address, like this: > > i find lot of ip port in internet for example: 173.161.0.227 > when i

[squid-users] IPv6 interception crash: Ip::Address::getInAddr : Cannot convert non-IPv4 to IPv4.

Hi, I'm running on NetBSD 7-STABLE, with IPFilter 5.1 (--enable-ipf-transparent) NAT interception rule: rdr wm1 from 2001:738:7a00:a::/64 to any port = 80 -> 2001:738:7a00:a::14 port 3128 tcp cache.log: 2016/10/03 17:08:03.232 kid1| 5,2| TcpAcceptor.cc(220) doAccept: New connection on FD 18

[squid-users] problem in configuring squid

Hi and thanks for your good software, I want to config squid to make "open proxy" for both http & https I want make anonymous proxy, without decrypting traffic or etc, just change ip address, like this: i find lot of ip port in internet for example: 173.161.0.227 when i add some host to

Re: [squid-users] Caching application/octet-stream

There is a bug in the SSL-Bump implementation we have not sorted out yet, which makes the "ssl-bump" on this port enable reverse-proxy mode handling. That seems to be leading to Surrogate feature being enabled and the Authorization:Bearer being removed when it should be relayed to the server.

Re: [squid-users] FW: squid tproxy ssl-bump and Protocol error (TLS code: SQUID_ERR_SSL_HANDSHAKE)

Hi, - Original Message - > From: Yuri Voinov > >> Why is Squid negotiating cipher RC4-MD5 which is reported "insecure" >> and unsupported by the google web site?> Because your antique client request >> it. XP desupported years ago. [...] > Throw out XP and IE8 and