try and access www.microsoft.com from your squid server, if you ca'nt get
thru, it means microsoft has blocked you out.
if you are getting alot of request to www.microsoft.com without any
user-agent header and request object, some machines using your proxy could
have been infected with mydoom.c
On Mon, 16 Feb 2004, Chris ODonoghue wrote:
I want to use a httpd accelerator that does background check.
Perhaps this is something for you:
Squid Development Project - Optimize request forwarding for accelerator
setups url:http://devel.squid-cache.org/collapsed_forwarding/
Regards
Henrik
On Sat, 14 Feb 2004, Scott Phalen wrote:
Duane,
I have been watching my processes and cache all day today. Squid is the
only thing running on this server and seems to be running at 99% CUP
utilization. I currently have 600MB free mem out of 2GB (I reset squid 2
If you are using a very
Is their a way to reset/zero one particular snmp mib value while the
others continue ?
Kind Regards
Stuart Clark
Spacelink
On Fri, Feb 13, 2004 at 12:11:38PM -0500, JOHNSON DAVID R wrote:
Has anyone successfully clutered squid boxes? if so what did you use?
I have two machines in an active-active pair using Linux-HA
(http://linux-ha.org) for automatic failover.
Dave
--
** Dave Holland ** Systems Support -
Thx for the reply. In this scenario how I blocked those requests on my Proxy
which are carrying that doom virus. i.e how I trace them.
Thx
Regards,
Danish Khan
-Original Message-
From: Hwee Khoon, Neo [mailto:[EMAIL PROTECTED]
Sent: Monday, February 16, 2004 1:04 PM
To: [EMAIL
Yes I am using the same. Kindly tell me what should I do?
Regards,
-Original Message-
From: Duane Wessels [mailto:[EMAIL PROTECTED]
Sent: Monday, February 16, 2004 2:36 PM
To: Danish Khan
Cc: [EMAIL PROTECTED]
Subject: RE: [squid-users] is it a DOS attack ??
On Sun, 15 Feb 2004,
Hy all. After some hours of continous work I see the above message in the
messages log, and squid dissapears from process list. The system is a debian
woody, and the squid id the latest non-cvs beta, compiled from source.
What can cause the above message?
Thx!
--
Thomas Elias
Tel.:
I have already setup squid + iptables to work as a transparent proxying. But i have
made an enhancement (kinda), squid now listens on port 8080 and dansguardian listening
of port 3128. Ive done this because i dont want to reconfigure all workstations here,
so they believe that they are still
On Mon, 16 Feb 2004, Stuart Clark wrote:
Is their a way to reset/zero one particular snmp mib value while the
others continue ?
Nope!
Duane W.
cache.log
2004/02/15 20:49:01| ctx: exit level 0
2004/02/15 20:49:01| clientAccessCheck: proxy request denied in accel_only
mode
2004/02/15 20:49:13| storeDirWriteCleanLogs: Starting...
2004/02/15 20:49:13| WARNING: Closing open FD 13
2004/02/15 20:49:14| 65536 entries written so far.
Machines are behind Router
Regards,
-Original Message-
From: Duane Wessels [mailto:[EMAIL PROTECTED]
Sent: Monday, February 16, 2004 8:12 PM
To: Danish Khan
Cc: [EMAIL PROTECTED]
Subject: RE: [squid-users] is it a DOS attack ??
On Mon, 16 Feb 2004, Danish Khan wrote:
Yes I am
Took 22.1 seconds (42905.4 entries/sec).
FATAL: logfileWrite: /usr/local/squid/var/logs/store.log:
(0) Success
Squid Cache (Version 2.5.STABLE4-20040120): Terminated abnormally.
...
The file store.log may be too big (2Gig). This
file may need trimming.
M.
On Mon, 16 Feb 2004, Dr. Michael Weller wrote:
While mixing both directives seems superfluous and don't know right now
which one takes precedence, it shouldn't do any harm though.
always_direct allow has a higher priority than never_direct allow.
Default for both is deny.
Just a guess: The
On Mon, 16 Feb 2004, Danish Khan wrote:
Thx for the reply. In this scenario how I blocked those requests on my Proxy
which are carrying that doom virus. i.e how I trace them.
The IP access is logged in access.log. You then need to trace who has that
IP address.
Regards
Henrik
On Mon, 16 Feb 2004, Stuart Clark wrote:
Is their a way to reset/zero one particular snmp mib value while the
others continue ?
Only by implementing such function in the source code and recompiling
Squid.
Regards
Henrik
On Mon, 16 Feb 2004, [iso-8859-2] Éliás [iso-8859-2] Tamás wrote:
Hy all. After some hours of continous work I see the above message in the
messages log, and squid dissapears from process list. The system is a debian
woody, and the squid id the latest non-cvs beta
Please be specific about
On Mon, 16 Feb 2004, Danish Khan wrote:
Well which type of request it shows in access.log ??
Abnormally many GET requests for the targeted web site, and all for the /
I think. See the virus/worm description for details on what the malware is
doing.
Regards
Henrik
On Mon, 16 Feb 2004, Gleidson Antonio Henriques wrote:
Is there someone in the list with any experience with wccp v2 in squid
for answer me if there's a way to get squid working with multiples
routers ?
Not until this function has been implemented.
The current WCCPv2 implementation for Squid
Thx for the prompt reply.
Regards,
-Original Message-
From: Henrik Nordstrom [mailto:[EMAIL PROTECTED]
Sent: Monday, February 16, 2004 9:40 PM
To: Danish Khan
Cc: 'Henrik Nordstrom'; 'Hwee Khoon, Neo'; [EMAIL PROTECTED]
Subject: RE: [squid-users] is it a DOS attack ??
On Mon, 16 Feb
On Sun, 15 Feb 2004 20:59:34 +0530
Muthukumar [EMAIL PROTECTED] wrote:
The goal is to apply a special deny error page to source traffic that meets a
certian acl,
with is working fine for Linux.
Provide config info and some tcpdump's of the sessions.
Regards,
Muthukumar.
I will be
Hi Guys
I've installed Squid 2.5.STABLE4, everything is working fine except the
init.d script to stop Squid.
I had to change the paths to Squid, the PID file and configuration file, and
starting Squid from /etc/init.d/squid start works fine, but trying to stop
it does not work.
I've added -xv
On Mon, 16 Feb 2004 [EMAIL PROTECTED] wrote:
Hello all, I am a complete squid novice. I have just installed squid on a
server running Red Hat 7.2. I am not sure I have set up squid.conf
correctly. When I issue the command squid -z, I get no errors. When I
run squid, I get no errors.
On Mon, 16 Feb 2004, Andy Roberts wrote:
sites (actually their list is in the thousands now). Some sites they only
want partial access to. For example, apple.com. Many of the users are mac
users and want access to the site, but not access to
apple.com/quicktime/trailers which contains
On Mon, 16 Feb 2004, Gareth wrote:
I've added -xv to the '#! /bin/sh' line of the script to see what's
happening, and it seems the kill 0 12345 doesn't actually succeed in killing
the process, it tries this for 60 seconds, but nothing.
kill 0 something does not kill a proces, it just checks
Is it possible to refresh a single page within the Squid page cache with a certain
HTTP query args?
For example,
//resource-10-12?squid-refresh=truehttp://host/path/resource-10-12?squid-refresh=true
This would flush the cache with regards to the 1 - N page components associated with
the
On Mon, 16 Feb 2004, John Crossman wrote:
Is it possible to refresh a single page within the Squid page cache with a certain
HTTP query args?
Squid knows nothing about pages, only URLs.
If you want to refresh a URL in the cache then send a reload type
request to Squid for the URL using
haven't aborted
it, so who does?
Here is my cache.log, might help:
Feb 16 22:31:53 localhost squid[11253]: Starting Squid Cache version 3.0-PRE3-
20040216 for i686-pc-linux-gnu...
Feb 16 22:31:53 localhost squid[11253]: Process ID 11253
Feb 16 22:31:53 localhost squid[11253]: With 1024 file
Hy. For recompilation I used the following commands:
#!/bin/sh
cd ./system/squid
CFLAGS=-O2 -march=i686
./configure --with-dl --enable-default-err-language=Hungarian --enable-poll --
enable-select --enable-kqueue --disable-http-violations --enable-linux-
netfilter --disable-ident-lookups
Henrik,
Thank you for responding.
Just to make sure I understand, did you mean to say that
You CAN only have one https_port directive?
And that the problem is that I have BOTH
an http_port
and and https_port directive in my squid.conf file?
OR that I only have one https port directive?
If
On Mon, 16 Feb 2004, Kent, Mr. John (Contractor) wrote:
Just to make sure I understand, did you mean to say that
You CAN only have one https_port directive?
No, you can have as many https_port directives as you like.
The configuration file you sent only had one https_port directive, and it
acl msurl url_regex ^http://www\.microsoft\.com
acl msurlpath urlpath_regex /$ #no
requested object
acl msurlbro browser .*#any user
agent
http_access allow msurl msurlbro#allow user whose
browser
Hello,
I ma trying to setup a squid system that uses wget to 'feed' data into
and then allows authenticated users to access the cached data in the
system but not go beyond the cached data. That is, if the data is
avalable in the cache, then it is presented to the user, but if the data
is not
On Mon, 16 Feb 2004, OTR Comm wrote:
So, how can I stop suqid from getting data offsite except for user that
wget comes in as?
See miss_access.
You probably also want to enable offline_mode unless user access is always
via a neighbor cache using this cache as sibling.
Regards
Henrik
Henrik Nordstrom wrote:
On Mon, 16 Feb 2004, OTR Comm wrote:
So, how can I stop suqid from getting data offsite except for user that
wget comes in as?
See miss_access.
You probably also want to enable offline_mode unless user access is always
via a neighbor cache using this cache
I just rebooted my server and restarted squid and several consecutive
entries like this appeared in my store.log:
snip
1076992457.790 RELEASE -1 CE8669ED92F5F708F87752CD9666DFAF
? ? ? ? ?/? ?/? ? ?
snip
What does this mean? Has something been purged from the
- Original Message -
snip
1076992457.790 RELEASE -1 CE8669ED92F5F708F87752CD9666DFAF
? ? ? ? ?/? ?/? ? ?
snip
What does this mean? Has something been purged from the cache?
Check this FAQ .
-
20040216 for i686-pc-linux-gnu...
Feb 16 22:31:53 localhost squid[11253]: Process ID 11253
Feb 16 22:31:53 localhost squid[11253]: With 1024 file descriptors available
Feb 16 22:31:53 localhost squid[11253]: DNS Socket created at 192.168.2.1, port
32820, FD 5
Feb 16 22:31:53 localhost squid[11253
38 matches
Mail list logo