Hi Amos,
Thanks for the quick reply.
> However, explicit proxies can receive TLS connections. The two proxies
> will happily use those connections for any type of traffic, including
> ones like https:// with special security requirements.
>
> * Configure the squid2 with an https_port for receivi
Hi there,
I'm experimenting with WAN acceleration & block caching (wanproxy.org
for those interested). This works great for HTTP:
client <-> squid1 <-> wanproxy <-> VPN <-> wanproxy <-> squid2 <-> inet
With SSL, I suspect the data between squid and squid2 (in a
child/parent configuration) will
Hi Eliezer,
I'm one of the many users of your published EL/CentOS RPMs and greatly
appreciate you making it available to the public, as well as keeping up to
date from time to time. Just thought I'd express thanks :)
Regards,
Chris
On 27 March 2015 at 02:08, Eliezer Croitoru wrote:
> Publish
Hi Rafael,
> as if I am not mistaken the data get's written to the log
> *after* each session is completed
You are correct about squids access_log file, but sqtop uses squid's
manager interface to report on active HTTP(S) connections. i.e for
the download of a large (1GB) file, sqtop will report
Hi Rafael,
> If you'd dump your mindset on how you'd like to see it ideally I
> could take a look in qlproxy 4.2 when we redesign our reports
> subsystem. Milestone is -
> https://github.com/ra-at-diladele-com/qlproxy_external/milestones/4.2
sqtop shows active sessions through the proxy per clie
> Solaris 10 u11. :) Yeah, it still using. :)
I can only suggest standard troubleshooting processes for when a
package isn't compiling - config.log should give you hints at what
could be wrong. Feel free to send me config.log offlist if you want.
No guarantees on being able to help you :)
Regard
> Configure with errors:
>
> checking for cerrno... yes
> checking climits usability... yes
> checking climits presence... yes
> checking for climits... yes
> checking for gethostbyname... no
> configure: error: Unable to find some C functions
You probably need gcc-c++ installed.
What distro are
Hi Jason,
> If you think the external acl method is too expensive to run, how do you
> expect to feed this NIDS data back into squid? I think you'd find you'd
> need an external acl check to do that bit anyway :-)
I should have been clearer - my use of the term feedback loop was
meant to imply th
Interesting thread so far. Has anyone thought of using Bro-IDS as a
feedback loop for some of this advanced logic for bypassing bumping?
Bro performs passive reconnaissance, generates very useful logs for
any payloads it can decode, and is extendable.
e.g. ssl.log may contain something like this
I am very late on this thread (christmas catchup :))
But since it wasn't mentioned by others, and I find it very useful, I
use sqtop [1]. Screenshot on main page gives you an indication of
what it can tell you.
Regards,
Chris
[1] http://code.google.com/p/sqtop/
10 matches
Mail list logo