header_access Via deny all
header_access X-Forwarded-For deny all
.vp
Should the documentation on the configuration file be fixed ?. It says
"If set, Squid will include a Via header in requests and replies.". But
reply seems to have the Via header when the directive is set to off.
FIXED in
> Hi,
>
> I want to enable below fetures in SQUID.
>
> features are,
>
> when users access Internet with nsca_auth featue, They are asked to
> type username and password.
>
> Can I set a life time (5 days or 2 weeks like that) to that password
> .when that time period expires, Users SHOULD change
Its not really a function of the Squid software; its a function of whatever
authentication backend you decide to use.
You could quite happily script up a bunch of stuff to store usernames/passwords/
expiry information in an SQL table and use a basic authentication helper to
authenticate against th
On sön, 2007-09-02 at 10:26 -0700, zulkarnain wrote:
> Hi,
>
> I'm trying to configure header_access on
> squid-2.6stable15 as follow;
>
> header_access Via deny all
> header_access X-Cache deny all
> header_access X-Forwarded-For deny all
>
> I got this error message:
>
> Sep 3 00:13:50 serv1
Hi there,
I'm trying to setup a security enforcing Squid using a Debian Etch
system. I considered several methods, but in the end I think that using
ICAP is structurally the best option (although there obviously are
solutions using DansGuardian).
I set up the combo Squid3 and c-icap and it w
On Fri, 31 Aug 2007 15:26:20 +0200
Matus UHLAR - fantomas <[EMAIL PROTECTED]> wrote:
> > On 30-Aug-07 My Secret NSA Wiretap Overheard Lutieri G. Saying :
> > > /dev/da0s1a on / (ufs, local)
> > > devfs on /dev (devfs, local)
> > > /dev/da0s1e on /tmp (ufs, local, soft-updates)
> > > /dev/da0s1f
Hi,
The last days I'm experiencing problems logging in
https://webmail.skynet.be through squid.
Logging in over a direct line is no problem.
The browser makes no difference, tried with Firefox 2, IE6 and 7.
Here's the log from the squid server:
1188840174.379171 192.168.x.y TCP_MISS/302 18577
Hi list,
I'm running Squid as a reverse proxy to work around a slow
webapplication. Basically, I'm caching everything for a *long* time and
force-refresh only those pages that need updating, using a script that
runs in the background.
Some pages have query parameters (e.g. ...?page=2) and I would
On Tue, Sep 04, 2007, Gert Verhoog wrote:
> I'm beginning to suspect that refresh_pattern ignores query strings, but
> hopefully I'm wrong. Currently I'm not caching urls with parameters at
> all (using an urlpath_regex acl), but this is not desirable.
Check the cache (or no_cache directive in th
Adrian Chadd wrote:
> On Tue, Sep 04, 2007, Gert Verhoog wrote:
>
>> I'm beginning to suspect that refresh_pattern ignores query strings, but
>> hopefully I'm wrong. Currently I'm not caching urls with parameters at
>> all (using an urlpath_regex acl), but this is not desirable.
>
> Check the cac
make sure you disable
# acl QUERY urlpath_regex cgi-bin \?
# cache deny QUERY
mike
At 05:08 PM 9/3/2007, Gert Verhoog wrote:
Adrian Chadd wrote:
> On Tue, Sep 04, 2007, Gert Verhoog wrote:
>
>> I'm beginning to suspect that refresh_pattern ignores query strings, but
>> hopefully I'm wrong. Cur
also forget to mention
# hierarchy_stoplist cgi-bin ?
mike
At 05:08 PM 9/3/2007, Gert Verhoog wrote:
Adrian Chadd wrote:
> On Tue, Sep 04, 2007, Gert Verhoog wrote:
>
>> I'm beginning to suspect that refresh_pattern ignores query strings, but
>> hopefully I'm wrong. Currently I'm not caching u
leongmzlist wrote:
> make sure you disable
>
> # acl QUERY urlpath_regex cgi-bin \?
> # cache deny QUERY
That is not the issue. I'm sorry if I wasn't clear, but I am aware of
the option to allow/deny caching for query parameters. As I've tried to
explain in my previous posts, I purposefully (re-)
that error isn't my primary issue at this point, although i guess i do
need to look in my script more careful, my main issue and i really
hope someone here can help me out with this is following:
as i said i've got special URL that i need to send certain URLs and
that URL will do whatever it needs
We have been using squid for a number of years (since about 1999) at the
East Granby, CT, USA school system. We use IE and have IE configured to
point to squid at port 3128. Recently, the state (CT) started to provide
a filtering system for optional use by school districts within the state.
Thi
> that error isn't my primary issue at this point, although i guess i do
> need to look in my script more careful, my main issue and i really
> hope someone here can help me out with this is following:
>
> as i said i've got special URL that i need to send certain URLs and
> that URL will do whatev
> that error isn't my primary issue at this point, although i guess i do
> need to look in my script more careful, my main issue and i really
> hope someone here can help me out with this is following:
>
> as i said i've got special URL that i need to send certain URLs and
> that URL will do whatev
On mån, 2007-09-03 at 21:07 -0400, alexus wrote:
> as i said i've got special URL that i need to send certain URLs and
> that URL will do whatever it needs to do and then send it back to
> original URL, so that user gets to his/her destination as expected,
> now i think when i get that URL sent to
--- Henrik Nordstrom <[EMAIL PROTECTED]>
wrote:
>
> Needs to be after where the "all" acl is defined...
>
Hi Henrik,
Thanks for your reply. I think squid.conf for
squid-2.6stable15 should be reorganized to avoid this
problem. On squid-2.6Stable14, header_access define
after access control (acl
Hi,
I am having some issues where users using safari are constantly prompted
to authenticate again and again when visiting an https website.
The logs show the following:
1188864244.292561 128.184.148.13 TCP_MISS/200 1779 CONNECT
phobos.apple.com:443 macupd DIRECT/17.250.236.65 -
11888642
Hi All,
I am having a problem with our Squid hierarchy. I am getting
TCP_DENIED in the access.log and the cache.log shows a forwarding
loop detected. Here is the access.log entry:
192.168.1.81 - - [03/Sep/2007:14:01:06 -0500] "GET http://
web.example.com/customers/mba HTTP/1.0" 403 1469
On Tue, Sep 04, 2007, Daniel Appleby wrote:
> It seems safari will drop the proxy auth header for each request causing
> squid to re-prompt for it again and again.
>
> Anyone had this issue before or knows how to fix it?
Is that Basic Authentication? If so, have you thought about contacting
App
On Mon, Sep 03, 2007, Paul Bertain wrote:
> Via: 1.1 squid-1.example .com:80 (squid/2.5.STABLE14)
You might consider upgrading to squid-2.6.STABLE16 when it comes
out.
> X-Forwarded-For: 208.106.5.39
> Cache-Control: max-age=259200
> Connection: keep-alive
>
> I think our Squid parent is not res
23 matches
Mail list logo
