On 1/27/21 1:50 PM, Eliezer Croitoru wrote:
> I am still missing a way to make this work with the fingerprint.
I do not know what you are trying to accomplish (i.e. what "this" is).
> We first need to know the fingerprint but when squid "knows" about
> it, it's already too late. In what config
First thanks it helps.
The next thing is that I am still missing a way to make this work with the
fingerprint.
We first need to know the fingerprint but when squid "knows" about it, it's
already too late.
In what config scenario can it work?
Eliezer
* The error code are irrelevant since there
On 1/27/21 11:45 AM, Eliezer Croitoru wrote:
> I'm not sure I understood hat these errorcde and error detai.
FWIW, access log fields are configured using logformat %codes. Search
squid.conf.documented for the words "err_code" and "err_detail" (no quotes).
> acl tls_to_splice any-of ...
On 1/27/21 11:01 AM, Andrea Venturoli wrote:
>> 2021/01/04 14:24:24 kid1| suspending ICAP service for too many failures
>> 2021/01/04 14:24:24 kid1| essential ICAP service is suspended:
>> icap://127.0.0.1:1344/squidclamav [down,susp,fail11]
> This happens usually once a day, always at the same
Hey Alex,
I'm not sure I understood hat these errorcde and error detai.
I assume that there is a relevant debug_options for parsing the fingerprint.
The next thing I was thinking about was the fingerprint validation related
debug.
To verify what might make squid to compare wrongly the SHA1
Hello.
On a box I manage, Squids occasionally stops for a few minutes, blaming
a communication error with C-ICAP (running SquidClamAV).
In cache.log I see:
2021/01/04 14:24:24 kid1| suspending ICAP service for too many failures
2021/01/04 14:24:24 kid1| essential ICAP service is suspended:
On 1/26/21 2:09 AM, Eliezer Croitoru wrote:
> I'm trying to understand what I'm doing wrong in the config that stil
> lets edition.cnn.com be decrypted instead of spliced?
If you still need help, please share the relevant parts of your
configuration and logs. I would start with ssl_bump rules
