I'm having some problems with reverse proxy and NTLM authentication.
Specifically, the connection to the client is not persisted which I believe
invalidates the NTLM authentication protocol. I've added a source port number
to the logs which shows that it is indeed creating a new connection for e
Hello all.
We have a squid 3.0.STABLE15 used as reverse proxy on a SUSE SLES 11
SP0. This squid serves the Internet access to some of our portals. The
communication with the webservers is in HTTP and, for one of the
domains, the squid serves an SSL certificate bought to a known CA
By the mom
On 11/06/2012 8:11 p.m., James Harper wrote:
I'm having some problems with reverse proxy and NTLM authentication.
Specifically, the connection to the client is not persisted which I believe
invalidates the NTLM authentication protocol. I've added a source port number
to the logs which shows th
On 11/06/2012 9:53 p.m., David Benach wrote:
Hello all.
We have a squid 3.0.STABLE15 used as reverse proxy on a SUSE SLES 11
SP0. This squid serves the Internet access to some of our portals. The
communication with the webservers is in HTTP and, for one of the
domains, the squid serves an SSL
The Squid HTTP Proxy team is very pleased to announce the
availability of the Squid-3.1.20 release!
This release brings many bug fixes for issues found in earlier releases.
Including a few outstanding minor security issues.
Of particular note are:
* Bug 3466: Adaptation stuck on last single-
On Mon, Jun 11, 2012 at 11:32 AM, Amos Jeffries wrote:
> On 11/06/2012 6:11 p.m., Muhammad Yousuf Khan wrote:
>>
>> On Sun, Jun 10, 2012 at 10:54 PM, Eliezer Croitoru
>> wrote:
>>>
>>> proxy is uses as a server to client that is aware of it.
>>> this is what called forward proxy.
>>> you define i
OK Amos.
Thanks for your fast response.
David Benach.
A 11.06.2012 12:39, Amos Jeffries escrigué:
On 11/06/2012 9:53 p.m., David Benach wrote:
Hello all. We have a squid 3.0.STABLE15 used as reverse proxy on a
SUSE
SLES 11 SP0. This squid serves the Internet access to some of our
portals
Hi All,
I have a configuration as given below:
client <--> downstream-proxy <--> upstream-proxy <---> cloud
downstream proxy is always squid, while upstream proxy is either squid
or bluecoat.
When SSL termination enabled on downstream proxy, I noticed traffic
between down-stream and
To Summarize for the below configuration:
client <--> downstream-proxy <--> upstream-proxy <---> cloud
squid should do HTTP CONNECT (for https traffic) to upstream proxy
whenever "SSL termination" is enabled on the downstream proxy. But
instead, SSL termination is resulting in non-encr
On Mon, 11 Jun 2012 18:30:14 +0530
nipun_mlist Assam wrote:
> Hi All,
>
> I have a configuration as given below:
>
> client <--> downstream-proxy <--> upstream-proxy <--->
> cloud
Im not sure what a cloud is, I think its called the internet.
>
> downstream proxy is always squid,
Hi Amos,
thank you, but
signature file is missing :(
There is no download link for signature file here:
http://www.squid-cache.org/Versions/v3/3.1/
Cheers
Chris
Am 11.06.2012 13:24, schrieb Amos Jeffries:
The Squid HTTP Proxy team is very pleased to announce the
availability of the Squid-3.1.
Did i'm alone on this issue ?
Le 08/06/2012 16:34, David Touzeau a écrit :
Dear
I think i have this bug back
http://bugs.squid-cache.org/show_bug.cgi?id=3411
I'm using I've recompiled squid with squid3.2 version
3.2.0.17-20120527-r11561 on 64 bits computer Ubuntu 12.04
So i've a problem be
QuintoLabs is happy to announce availability of Hot Fix 2 for QuintoLabs
Content Security 2.0 for Squid Proxy Server. This release contains the
following improvements:
1. Installation on Ubuntu 12.04 now runs correctly.
2. Better handling of user names with dashes and dots in
rep
Is there a way to write an ACL that can determine whether a request has been
made using Squid as a forward proxy, or if the request has been intercepted?
Guy
On 12.06.2012 05:41, Christian wrote:
Hi Amos,
thank you, but
signature file is missing :(
There is no download link for signature file here:
http://www.squid-cache.org/Versions/v3/3.1/
Cheers
Chris
Bit of annoying delay on the mirror pull. :-(
I've kicked it manually and seems to have work
On 12/06/2012 00:14, Guy Helmer wrote:
Is there a way to write an ACL that can determine whether a request has been
made using Squid as a forward proxy, or if the request has been intercepted?
Guy
you can use the "myportname" acl for that.
then you can deny any direct access to the intercept
you can use two cache_peers fot he same host then name them differently
with a "name=" and using a CONNECT method acl to allow access to the
ssl encrypted upstream connection.
Eliezer
On 11/06/2012 16:00, nipun_mlist Assam wrote:
Hi All,
I have a configuration as given below:
client<--
On 11/06/2012 08:56, Amos Jeffries wrote:
You have your debug options set to display important messages, not just
critical ones.
It is important to be aware your "cache deny REDIRECT" is not working as
you designed.
Amos
.. do you have any suggestion on how to make it work to not cache a 302
On 12.06.2012 11:17, Eliezer Croitoru wrote:
you can use two cache_peers fot he same host then name them
differently with a "name=" and using a CONNECT method acl to allow
access to the ssl encrypted upstream connection.
Not quite. The downstream has terminated the TLS and Squid does not
wra
On 12.06.2012 11:19, Eliezer Croitoru wrote:
On 11/06/2012 08:56, Amos Jeffries wrote:
You have your debug options set to display important messages, not
just
critical ones.
It is important to be aware your "cache deny REDIRECT" is not
working as
you designed.
Amos
.. do you have any su
On 12/06/2012 04:21, Amos Jeffries wrote:
On 12.06.2012 11:19, Eliezer Croitoru wrote:
On 11/06/2012 08:56, Amos Jeffries wrote:
You have your debug options set to display important messages, not just
critical ones.
It is important to be aware your "cache deny REDIRECT" is not working as
you
On 12.06.2012 14:10, Eliezer Croitoru wrote:
On 12/06/2012 04:21, Amos Jeffries wrote:
On 12.06.2012 11:19, Eliezer Croitoru wrote:
On 11/06/2012 08:56, Amos Jeffries wrote:
You have your debug options set to display important messages, not
just
critical ones.
It is important to be aware
Hi Amos, I have been trying the reply_body_max_size without the !all as you
suggest, however I get the same outcome - download sizes aren't being
restricted. We have used this schema with other directives such as
delay_pools with out any problems so we are fairly sure the external
acl's are doing
>
Cool. Are you able to write this up into the YouTube wiki page?
Amos
i will need to get a test page first to feel the "wiki" because i have
never written one.
also my user from a reason wasnt activated.
i didnt got the mail (my server is sitting on a dynip server so it might
be it but it
>
> I'm having some problems with reverse proxy and NTLM authentication.
> Specifically, the connection to the client is not persisted which I believe
> invalidates the NTLM authentication protocol. I've added a source port
> number to the logs which shows that it is indeed creating a new connecti
> >
> > I'm having some problems with reverse proxy and NTLM authentication.
> > Specifically, the connection to the client is not persisted which I
> > believe invalidates the NTLM authentication protocol. I've added a
> > source port number to the logs which shows that it is indeed creating
> > a
On 12/06/2012 4:15 p.m., Robert Gowty wrote:
Hi Amos, I have been trying the reply_body_max_size without the !all as you
suggest, however I get the same outcome - download sizes aren't being
restricted. We have used this schema with other directives such as
delay_pools with out any problems so
27 matches
Mail list logo
