Hi experts,
We are running Squid version 2.7.STABLE8 in acceleration mode. What we
want to achieve is that - when the site is accessed through squid
reverse proxy web site should prompt for authentication window. The
authentication request is sent to Active directory by IIS server before
granting
ons 2010-05-19 klockan 13:17 +1000 skrev Kris Glynn:
Can the same be achieved with the NTLM helper given this initial
configuration ?
external_acl_type ldap_group ttl=300 children=40 %LOGIN
/usr/lib/squid/wbinfo_group.pl
Thats a winbind NT domain helper, not NTLM.
Can we allow/deny
ons 2010-05-19 klockan 04:22 + skrev GIGO .:
Mine is a compiled version of squid does it matter? Is it true that
binaries available through a distro by default run in confined domain
and in case squid is compiled it will run in unconfined domain.
This appears to depends on how you start
Hello,
all our users have to authenticate via LDAP. I now would like to open
the access from one machine but only for download via wget.
Does acl aclname browser work with wget
and how can I combine this acl togheter with the IP src acl ?
Thanks
Andreas
Hi,
In permissive mode, you only get log, but selinux will not be active
(it will not forbid unauthorized access). Usually you put selinux in
permissive mode only in order to get all access denied log in
audit.log in order to build policy module or adjust filecontexts.
I suggest you to spend
Hi,
I use CENTOS 5.3 and currently have no knowledge of SELINUX as yesterday was
the first time i studied it. As u could have guessed i am a newbie in Linux
field.yes.. i have been assigned the project of migrating from ISA to squid
(managing having confidence in my capability to
Hi All,
I was running multiple instances of squid 3.0 Stable 25 on the same server
successfully. However i intend to run squid 2.7 3.1.3 on the same server now
reason being 2.7s enhance support of dynamic content caching. (Earlier the main
intention to use multiple instances was to give
On Wed, May 19, 2010 at 2:20 PM, GIGO . gi...@msn.com wrote:
Hi All,
I was running multiple instances of squid 3.0 Stable 25 on the same server
successfully. However i intend to run squid 2.7 3.1.3 on the same server
now reason being 2.7s enhance support of dynamic content caching.
Hello,
I've tried to set the disc cache smaller than memory size - because I'm observing reduced
performance with too much disc cache.
So now, I ask myself - if it would be a good idea to disable the whole disk cache thing and only use
RAM? And if so - how will I do it - with squid 3.0 there
Hi,
I got this 'fatal' error :
2010/04/21 16:10:25| aclParseIpData: Bad host/IP: 'ws.spotimage.com'
FATAL: Bungled squid.conf line 344: acl TO_SPOTIMAGE dst
ws.spotimage.com
Squid Cache (Version 3.0.STABLE13): Terminated abnormally.
Different topic explain that this error is not fatal
Dumon Sylvain (THALES GROUP) wrote:
Hi,
I got this 'fatal' error :
2010/04/21 16:10:25| aclParseIpData: Bad host/IP: 'ws.spotimage.com'
FATAL: Bungled squid.conf line 344: acl TO_SPOTIMAGE dst
ws.spotimage.com
Squid Cache (Version 3.0.STABLE13): Terminated abnormally.
Different topic explain
Andreas Moroder wrote:
Hello,
all our users have to authenticate via LDAP. I now would like to open
the access from one machine but only for download via wget.
Does acl aclname browser work with wget
Yes. Any standards compliant HTTP client has a User-Agent name and sends
it in requests.
Helo,
I'm having this, under 3.1.3 (unfortunallty server is in producction)
2010/05/18 23:39:57| NETDB state saved; 0 entries, 0 msec
2010/05/19 00:42:12| NETDB state saved; 0 entries, 0 msec
2010/05/19 01:22:57| NETDB state saved; 0 entries, 0 msec
2010/05/19 02:13:03| NETDB state saved; 0
From: Amos Jeffries [mailto:squ...@treenet.co.nz]
Sent: Monday, May 17, 2010 9:59 PM
Well, there you go. Debug level #2 is full of debugging traces.
FWIW:
level 0 - critical failure messages.
level 1 - warnings and important notices
level 2 thru 9 - debug traces (section
2010/5/19 Luis Daniel Lucio Quiroz luis.daniel.lu...@gmail.com:
Helo,
I'm having this, under 3.1.3 (unfortunallty server is in producction)
2010/05/18 23:39:57| NETDB state saved; 0 entries, 0 msec
2010/05/19 00:42:12| NETDB state saved; 0 entries, 0 msec
2010/05/19 01:22:57| NETDB state
2010/5/19 Georg Höllrigl georg.hoellr...@xidras.com:
Hello,
I've tried to set the disc cache smaller than memory size - because I'm
observing reduced performance with too much disc cache.
So now, I ask myself - if it would be a good idea to disable the whole disk
cache thing and only use
Hi,
I'm using mswin_ntlm_auth to authenticate users and it appears to be
working correctly.
However, when a non-domain users accesses the proxy, or if using firefox
for example, they get the login dialog (which is fine) and they need to
enter their username in the form DOMAIN\user . Is
Le mercredi 19 mai 2010 09:37:43, Peng, Jeff a écrit :
2010/5/19 Luis Daniel Lucio Quiroz luis.daniel.lu...@gmail.com:
Helo,
I'm having this, under 3.1.3 (unfortunallty server is in producction)
2010/05/18 23:39:57| NETDB state saved; 0 entries, 0 msec
2010/05/19 00:42:12| NETDB
Hello eveyone,
We are using Squid 2.7 for caching educational media files. We are only using
the cache for users who need to access these files. For other internet
traffic the cache will be bypassed.
The media files will not be changed for at least a year at which point I will
run a
Here is the link - http://jez4christ.com/view/archives/127
Left that out in my earlier response to you.
thanks,
James Tan
Hi Franz Angeli,
take a look at my recent attempt to decrypt SSL (terminate) using Squid and
ICAP, might be useful to you.
Chanced upon your message when digging for more information relating to Squid
and ICAP solutions for a personal project.
thanks,
James Tan
Franz Angeli franz.angeli at gmail.com writes:
And what about ICAP configuration? Some suggestion?
Hi Franz Angeli,
here's the link - http://jez4christ.com/view/archives/127 to my recent attempt
to
decrypt SSL and having ICAP with SQUID.
Am new to GMANE so did not get my earlier
Is it possible with squid to just log web traffic on a PC, but if it
does not match a restricted site via squidguard and a blacklist, have
it surf on it's own internet connection instead of it going through
the proxy?
--
Kevin Blackwell
I have this set in my Squid 2.7 conf file..
#5/19/10 - Added to bypass Webex caching
acl webex dstdomain .webex.com
#5/19/20 - Added to not cache webex
cache deny webex
...How can I verify Squid isn't caching anything going to Webex.com?
Thanks..
ons 2010-05-19 klockan 09:16 -0500 skrev Luis Daniel Lucio Quiroz:
Helo,
I'm having this, under 3.1.3 (unfortunallty server is in producction)
2010/05/18 23:39:57| NETDB state saved; 0 entries, 0 msec
2010/05/19 00:42:12| NETDB state saved; 0 entries, 0 msec
2010/05/19 01:22:57| NETDB
ons 2010-05-19 klockan 13:47 -0500 skrev Kevin Blackwell:
Is it possible with squid to just log web traffic on a PC, but if it
does not match a restricted site via squidguard and a blacklist, have
it surf on it's own internet connection instead of it going through
the proxy?
Unfortunately
ons 2010-05-19 klockan 14:03 -0500 skrev Ryan McCain:
I have this set in my Squid 2.7 conf file..
#5/19/10 - Added to bypass Webex caching
acl webex dstdomain .webex.com
#5/19/20 - Added to not cache webex
cache deny webex
...How can I verify Squid isn't caching anything going to
Hey guys,
I have question about rfc compliancy in regard to caching set-cookie
headers. According to the faq, squid does not return set-cookie headers
for hits, and I am very happy that it works this way.
It does not really make sense to me for an application to send a
cache-control:public
On Wed, 19 May 2010 16:28:08 +0200, Simon Brereton
simon.brere...@dada.net wrote:
From: Amos Jeffries [mailto:squ...@treenet.co.nz]
Sent: Monday, May 17, 2010 9:59 PM
Well, there you go. Debug level #2 is full of debugging traces.
FWIW:
level 0 - critical failure messages.
2010/5/20 Henrik Nordström hen...@henriknordstrom.net:
ons 2010-05-19 klockan 14:03 -0500 skrev Ryan McCain:
I have this set in my Squid 2.7 conf file..
#5/19/10 - Added to bypass Webex caching
acl webex dstdomain .webex.com
#5/19/20 - Added to not cache webex
cache deny webex
...How
30 matches
Mail list logo