The Squid HTTP Proxy team is very pleased to announce the
availability of the Squid-3.1.23 release!
This release resolves the CVE-2012-5643 vulnerability in the 3.1 series.
There are no more planned releases of 3.1. All users of Squid-3.1 are
encouraged to plan for upgrades.
See the ChangeLog
The Squid HTTP Proxy team is very pleased to announce the
availability of the Squid-3.3.0.3 beta release!
This release adds some polish to the 3.3 beta releases and
fixes additional pieces of the CVE-2012-5643 / SQUID-2012:1
vulnerability.
Due to the serious nature of the vulnerability fix the
Hello,
does this update fix problem i mentionned on GetAddrInfo on thread
"Squid crash on OpenBSD 5.2 ?" ?
--
Best regards,
Loïc BLOT, Engineering
UNIX Systems, Security and Networks
http://www.unix-experience.fr
Le jeudi 10 janvier 2013 à 20:57 +1300, Amos Jeffries a écrit :
> The Squid HTTP
Hello,
thank you for the response.
If I set the browser to use proxy a there is temporarily no internet
connection..then it shows the custom page (the ERR_DNS_FAIL one). BTW:
Is it possible to define another custom page when the internet
connection is not available (so it will shows different one
On 10/01/2013 9:38 p.m., Frantisek Remias wrote:
Hello,
thank you for the response.
If I set the browser to use proxy a there is temporarily no internet
connection..then it shows the custom page (the ERR_DNS_FAIL one). BTW:
Is it possible to define another custom page when the internet
connectio
Are the parent directories of ssl_db writeable by the squid user?You
might want to look at that too
On Thu, Jan 10, 2013 at 7:40 AM, Jason A. Sloan wrote:
> No joy.
>
> I initially ran the ssl_crtd command as root before using sudo to run it as
> the squid user. Regardless I tried that to no avai
On 10/01/2013 9:21 p.m., Loïc Blot wrote:
Hello,
does this update fix problem i mentionned on GetAddrInfo on thread
"Squid crash on OpenBSD 5.2 ?" ?
Not specifically as far as I'm aware.
Alex recently submitted a patch that fixes the ssl_crtd crash Guy
mentioned in that thread. It may work fo
Hi All
I am trying to make the hardware specs for the SQUID cache server.
I have around 600 users, they may be using the bandwidth from 500dbps to 3Mbs.
Expected annual increase of users will be up to 20%. I would like to size the
hardware specs for the server, which will be enough for next comi
Hello list,
does anybody have some working examples for me? I'm trying to grant internet
access for all users within a specific ldap group (ADS).
This is my call:
/usr/lib64/squid/squid_ldap_group -b
"cn=Internet,ou=User_Groups,dc=test,dc=local" -D
"cn=ldap,ou=Users,dc=test,dc=local" -w 'PASSW
I am testing squid as a reverse proxy in front of a website. What I am trying
to do is to get some media files from a different server when they are
requested from the main site, example:
If I try to access proxy.mysite.com/media/images/image.jpg, the site
actually gets the image from a different
Hey Joseph,
You meant SAS? yes?
To decide about hardware specs you will want to try and measure the
requests per second rather then the amount of users.
Another thing to take in account, is it a regular forward proxy or
intercept\trpoxy?
Do you want to keep logs on local disc?
Do you have spec
Hello Joseph,
I use a Dell R320 (2, because failover), under OpenBSD 5.2 with 16GB RAM
and Two Intel PRO/1000 PT (82571EB) (Broadcom 5720 isn't supported).
I have 500-600 users/smartphones and 1GB of WAN bandwidth.
To improve perfs (and this explain why so many RAM), i
move /var/squid/cache to mfs
OK, the problem is that it still show browser default error message
like before when the domain cannot be resolved
The error message is like
"Server not found. Check if the address for typing errors such as
ww.example.com of www.example.com" in firefox.
I need to show custom page instead of this
# pwd
/var
# ll
...
drwxr-xr-x. 3 squid squid 4096 Jan 9 21:29 squid
...
# cd squid
# ll
drwxr-xr-x. 3 squid nobody 4096 Jan 9 21:29 ssl_db
# cd ssl_db
# ll
drwxr-xr-x. 2 squid nobody 4096 Jan 9 21:29 certs
-rw-r--r--. 1 squid nobody0 Jan 9 21:29 index.txt
-rw-r--r--. 1 squid nobody8 J
Hi Amos and others,
On 10/01/13 09:57, Amos Jeffries wrote:
The Squid HTTP Proxy team is very pleased to announce the availability
of the Squid-3.2.6 release!
Will Developers, maintainers and announcers please only send new
software announcements to the squid-announce mailing list!
Includ
Hi all,
I'm running squid 3.2.x on a 64b bit Ubuntu box configured to support both IPv4
and IPv6. When starting I get
2013/01/10 13:53:31 kid1| Set Current Directory to
/usr/local/squid/var/cache/squid
2013/01/10 13:53:31 kid1| Loaded Icons.
2013/01/10 13:53:31 kid1| HTCP Disabled.
2013/01/10
CentOS RPM BUILDS here:
http://repo.ngtech.co.il/rpm/centos/6/x86_64/
I changed the repo a bit so it can be used with yum to get updates.
Add the following to a repo file:
##squid.repo
[squid]
name=Squid repo for CentOS Linux 6 - $basearch
baseurl=http://repo.ngtech.co.il/rpm/centos/6/$basearch
Hey Frantisek,
This is no squid problem.
since it's intercept proxy the client tries to do a dns lookup for the
www.example.com but since it dosn't have any way to get the dns result
for this domain it shows the client the problem it has.
Firefox dont know to what IP send the requests.
In this
On Wed, Jan 9, 2013 at 10:24 PM, Amos Jeffries wrote:
> On 10/01/2013 4:45 p.m., Amos Jeffries wrote:
>>
>> On 10/01/2013 3:32 p.m., Simon Matthews wrote:
>>>
>>> Amos,
>>>
>>> thanks for your reply. See my notes below.
>>>
>>> On Wed, Jan 9, 2013 at 1:55 AM, Amos Jeffries
>>> wrote:
On
Hello, Thank You for your answer. I know that its off topic now, but
can you get me some directions how this can be done?
Thank You
2013/1/10 Eliezer Croitoru :
> Hey Franisek,
>
> This is no squid problem.
> since it's intercept proxy the client tries to do a dns lookup for the
> www.example.com
In any case it wont be a conservative solution but it depends on what
you want to do in this situation? Do you have 1 wan connection etc..
If you have two wan connections that one is down use a basic round robin
load balancing as a base and a script to remove the faulty route in a
case it's down
On 1/10/2013 5:35 PM, Simon Matthews wrote:
Thanks. That solved the problem.
I still have a problem with linkedin, but it is rather different. Some
pages (including the home page) load with only a subset of what should
be on the page. I don't know if this is an issue with squid or my
browser.
S
On 09/01/13 21:07, Amos Jeffries wrote:
Does the CONNECT request contain Connection:close or
Connection:keep-alive? Squid supports keep-alive on CONNECT requests in
these situations where the CONNECT size is known and may be waiting for
another client request.
The client sends "Proxy-Connectio
On Jan 10, 2013, at 3:26 AM, Amos Jeffries wrote:
> On 10/01/2013 9:21 p.m., Loïc Blot wrote:
>> Hello,
>> does this update fix problem i mentionned on GetAddrInfo on thread
>> "Squid crash on OpenBSD 5.2 ?" ?
>
> Not specifically as far as I'm aware.
>
> Alex recently submitted a patch that f
Hi,
Any suggestions how to use squid to add HTML elements to third party webpages?
An example - if a web page is served trough our squid proxy, we add few HTML
elements before the third party web page html body closing tag and send it back
to the client. So Squid wouldn't do any content cachin
On 11/01/2013 11:36 a.m., Girts Laudaks wrote:
Hi,
Any suggestions how to use squid to add HTML elements to third party webpages?
Squid does not support altering the message content for some very good
reasons. Both legal and technical.
Legal: Find a good lawyer and investigate the legaity o
This is a test message verifying report of squid-announce issues.
This is a test message verifying report of squid-announce issues.
On 11/01/2013 7:11 a.m., Steve Hill wrote:
On 09/01/13 21:07, Amos Jeffries wrote:
Does the CONNECT request contain Connection:close or
Connection:keep-alive? Squid supports keep-alive on CONNECT requests in
these situations where the CONNECT size is known and may be waiting for
another client
On 11/01/2013 2:36 a.m., Hylton Conacher (ZR1HPC) wrote:
Hi Amos and others,
On 10/01/13 09:57, Amos Jeffries wrote:
The Squid HTTP Proxy team is very pleased to announce the availability
of the Squid-3.2.6 release!
Will Developers, maintainers and announcers please only send new
software
On 11/01/2013 12:32 a.m., tomsl wrote:
I am testing squid as a reverse proxy in front of a website. What I am trying
to do is to get some media files from a different server when they are
requested from the main site, example:
If I try to access proxy.mysite.com/media/images/image.jpg, the site
On Wed, Jan 9, 2013 at 6:39 PM, Amos Jeffries wrote:
> On 9/01/2013 9:19 p.m., Tian You wrote:
>>
>> Hi,
>>
>> I use version 3.1.20.
>> According to the doc, between squid and real server, keep-alive is
>> supported.
>> But when I use wireshark to capture the package, it's found that the
>> TCP co
Hello,
Can someone tell me what could be the problem in my Squid conf file.
I frequently get this message on my browsers.
"The cache was not able to resolve the hostname presented in the URL.
Check if the address is correct."
Then I am unable to browse for some time, the problem vanishes after so
On 11/01/2013 6:22 p.m., PAWAN KUMAR wrote:
Hello,
Can someone tell me what could be the problem in my Squid conf file.
I frequently get this message on my browsers.
"The cache was not able to resolve the hostname presented in the URL.
Check if the address is correct."
Then I am unable to brows
34 matches
Mail list logo