,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
AgustaWestland http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
views of Westland Helicopters Ltd.
but
then you need an http server like Apache http server!
By the time the request has got to squid it's too late. You must do
this browser-side, as Ang said in a proxy auto config script or just by
adding them to the proxy exclusion list.
HTH,
Neil.
--
Neil Hillard
Hi,
Abd-Ur-Razzaq Al-Haddad wrote:
Hi all,
I've got squid setup using NTLM Authentication,
I want to force the login window to appear each time a user opens their
web browser.
How is this achieved?
thanks
Use basic authentication.
HTH,
Neil.
--
Neil
?
Neil.
--
Neil Hillard[EMAIL PROTECTED]
AgustaWestland http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
views of Westland Helicopters Ltd.
be able to use the DOS format name - d:\progra~1\...
Never tried it but you may have success.
HTH,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
AgustaWestland http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect
about it?
It doesn't work reliably? :)
Doesn't it? You'll have to cite specific examples. I can't think of
one problem I've had that's related to basic auth not working as it
should (as long as you don't count configuration faux pas!)
Neil.
--
Neil Hillard
Hi,
Adrian Chadd wrote:
On Fri, Aug 10, 2007, Neil A. Hillard wrote:
Hi,
Adrian Chadd wrote:
On Fri, Aug 10, 2007, Neil A. Hillard wrote:
It doesn't work reliably? :)
Doesn't it? You'll have to cite specific examples. I can't think of
one problem I've had that's related to basic auth
Hi,
Adrian Chadd wrote:
On Fri, Aug 10, 2007, Neil A. Hillard wrote:
It doesn't work reliably? :)
Doesn't it? You'll have to cite specific examples. I can't think of
one problem I've had that's related to basic auth not working as it
should (as long as you don't count configuration faux
in TRANSPARENT mode?
This happened in SQUID 2.5.
Please see:
http://wiki.squid-cache.org/SquidFaq/InterceptionProxy#head-7cfff26a112769fccff8f4d507961cd27ebe5eac
Neil.
--
Neil Hillard[EMAIL PROTECTED]
AgustaWestland http
that there is a proxy then why would it (why should it) try
to authenticate to one? Tell it that a proxy exists and it's more than
happy to authenticate.
Interception is less than ideal.
Neil.
--
Neil Hillard[EMAIL PROTECTED]
AgustaWestland http
-7cfff26a112769fccff8f4d507961cd27ebe5eac
You may also care to search the archives as this question has been asked
many times before.
BTW, Henrik's name does not contain a 'd'!
Neil.
--
Neil Hillard[EMAIL PROTECTED]
AgustaWestland http://www.whl.co.uk
Adrian,
Adrian Chadd wrote:
On Mon, Aug 06, 2007, Neil A. Hillard wrote:
I can't see how it's a shortcoming of the protocol. If the browser
isn't aware that there is a proxy then why would it (why should it) try
to authenticate to one? Tell it that a proxy exists and it's more than
happy
) and then authenticate to the target website (with
Authorization).
Neil.
--
Neil Hillard[EMAIL PROTECTED]
AgustaWestland http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
views
Henrik sent out a worm and in any case, why are you
reporting something that happened over 5 years ago?
Neil.
--
Neil Hillard[EMAIL PROTECTED]
AgustaWestland http://www.whl.co.uk/
Disclaimer: This message does not necessarily
request for an origin server and not a proxy
request as required.
Try using a proper browser or raise a fault with M$. Or if you have a
death wish, try 'upgrading' to IE7. I have no idea if they've fixed it
in that!
HTH,
Neil.
--
Neil Hillard
Henrik,
Henrik Nordstrom wrote:
tis 2007-06-05 klockan 08:53 +0100 skrev Neil A. Hillard:
I'll post here and let everyone know whether it's OK now. I'll compare
the sources but can you summarise what needed resolving?
It was a year ago so memory is a little dim, but looking at the diffs
,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
AgustaWestland http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
views of Westland Helicopters Ltd.
Jan,
Jan Groenewald wrote:
Hi
On Mon, Jun 11, 2007 at 01:15:02PM +0100, Neil A. Hillard wrote:
Although you have 1024-6000 listed in safe_ports, that will only allow
access for http. You are attempting to use https so you will also need
to list it in ssl_ports.
It is not normal to have
one site?
All users are in DHCP and there are no ip reservations.
Yes - look at using the myport ACL.
HTH,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
AgustaWestland http://www.whl.co.uk/
Disclaimer: This message does
,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
AgustaWestland http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
views of Westland Helicopters Ltd.
, but no luck.
For now i have put the servernames in the browsers exceptionlist but i
can't do this for all machines, and the users won't uses the FQDN in the
url bar.
Is there a solution for me ?
Yes. Use append_domain.
Neil.
--
Neil Hillard
,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
AgustaWestland http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
views of Westland Helicopters Ltd.
isn't designed for that.
HTH,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
AgustaWestland http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
views of Westland Helicopters Ltd.
?
Squid is probably the wrong tool for the job and won't work how you've
got it set up now so why not look around at other tools that are
designed for the job?
HTH,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
AgustaWestland http
and software like packit.
4. Get the specialist in to prove you right.
ATB,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
AgustaWestland http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
views
.
Was there anything logged in syslog at the time of the panic?
Neil.
--
Neil Hillard[EMAIL PROTECTED]
AgustaWestland http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
views of Westland
Hi,
Emilio Casbas wrote:
Neil A. Hillard escribió:
Hi,
Slacker wrote:
Emilio Casbas, on 02/23/2007 03:11 PM [GMT+500], wrote :
Hi
We have two squid servers as reverse proxys in front of our web servers
(squid-2.5Stable10). Both have working right for some months, but today
We have found
really need it! Most user don't.
cache_store_log none
HTH,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
AgustaWestland http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
views of Westland
-e56904dd4dfe0e21e5c2903473c473d401533ac7
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
views of Westland Helicopters Ltd.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
views of Westland Helicopters Ltd.
Craig,
Craig Home wrote:
Please help me unsubscribe from this list. I have tried asking for help
now 5 times.
Read the SMTP headers.
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http://www.whl.co.uk/
Disclaimer
Hi,
Matus UHLAR - fantomas wrote:
On 16.05.06 12:24, Neil A. Hillard wrote:
Paolo Biancolli wrote:
I presume the FAQ refers to the cache drives and not the OS drives
(assuming they are seprate drives)?
Do you really want your OS on a striped partition? That doubles your
chances of losing
is the recommended amount of RAM required if we use a 72GB cache
or alternatively a 144GB cache?
This too, (relationship between cache size and mem. requirements) is
described in the FAQ.
M.
Many thanks
Paolo Biancolli
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters
firewall or have enabled Linux
firewalling ?
OK, you appear to have SELinux enabled - you'll either need to disable
it (and reboot) or resolve the policy issue (I can't help on that one).
HTH,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland
and Fedora is the testing
ground for stuff that goes into them. The release schedule is roughly
every 6 months so you can find that you should upgrade your OS more
frequently than with RHEL / CentOS.
HTH,
Neil.
--
Neil Hillard[EMAIL PROTECTED
Hi,
Christoph Haas wrote:
On Wed, May 10, 2006 at 04:03:29PM +0100, Neil A. Hillard wrote:
Christoph Haas wrote:
On Wed, May 10, 2006 at 03:49:04PM +0200, Paolo Biancolli wrote:
We currently run squid 2.5 stable 13 on redhat 9 (2.4.20-8smp) in our
production environment.
We are getting
,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
views of Westland Helicopters Ltd.
.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
views of Westland Helicopters Ltd.
subject to checksum
offloading. In theory the packet should go to the NIC with a 0 checksum
and the NIC should fill in the blanks.
HTH,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http://www.whl.co.uk/
Disclaimer: This message does
(if your server even has it).
HTH,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
views of Westland Helicopters Ltd.
something but I really can't see the point in this. I
currently have three 9Gb spindles running at 6.9Gb each and I'd hate to
clear them!
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http://www.whl.co.uk/
Disclaimer
the it is below the
maximum you specified.
You need to find out why your server runs slowly when it has a large
cache - is it memory bound, IO bound or what.
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http
.
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
views of Westland Helicopters Ltd.
Guillaume Vachon wrote:
On Tue, 2006-04-11 at 14:51 +0100, Neil A. Hillard wrote:
Hi,
mail reformatted to make sense (i.e. please don't top post!)
I have a squid that has been caching for like 10 month. It now have an
amazing size of 4.5 gig.
What you have is determined
Guillaume Vachon wrote:
On Tue, 2006-04-11 at 10:26 -0400, Guillaume Vachon wrote:
On Tue, 2006-04-11 at 14:51 +0100, Neil A. Hillard wrote:
Hi,
mail reformatted to make sense (i.e. please don't top post!)
I have a squid that has been caching for like 10 month. It now have
lines
at all?
HTH,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
views of Westland Helicopters Ltd.
specific mime types or do something else fancy.
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
views of Westland Helicopters Ltd.
,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
views of Westland Helicopters Ltd.
not).
Switch it (or tell the admin to) basic or digest auth. If using basic
auth you may want to use SSL so that the credentials aren't sent in the
clear.
HTH,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http
-cache.org/Doc/FAQ/FAQ-11.html#ss11.14
NTLM is broken end of story and won't be supported in Squid. You should
choose a _standard_ authentication protocol, not one M$ dreamt up
(complete with bugs).
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd
accept that there are no responses to this,
though I would be grateful if I get a solution :-)
How about:
sed -e 's/^/./' infile outfile
HTH,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http://www.whl.co.uk
they've hacked?
HTH,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
views of Westland Helicopters Ltd.
contains:
172.16.0.0/16
172.18.0.0/16
etc.
The page they get to see gives them step by step instructions on
configuring their proxy correctly!
HTH,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http
.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
views of Westland Helicopters Ltd.
with a hyphen -
inform the provider of this service that they need to adhere to the
standards, after all that's what they're there for.
HTH,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http://www.whl.co.uk/
Disclaimer
to get that as none of the DNS tools will play ball with it -
quite rightly so).
As I said before - tell the site owner to correct it, plain and simple
it is wrong.
HTH,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd
#ss11.8
You should advise the provider of this service to read the relevant RFCs
and to correct their hostname to conform with the standard.
Or take a look at FAQ 11.9 for a workaround.
HTH,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland
.
HTH,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
views of Westland Helicopters Ltd.
use strong authentication so this
ensures that the users only have to authenticate once.
We still use squid as a forward proxy for at least 1500 users.
HTH,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http
if there
are any messages about duplicate addresses.
HTH,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
views of Westland
that had
Ethereal on it and the FTP server also gives out a 125 response for the
NLST command.
Many thanks in advance,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http://www.whl.co.uk/
Disclaimer: This message does
the command line on
the proxy.
Any advice on this issue would be appreciated.
Many thanks in advance,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http://www.whl.co.uk/
Disclaimer: This message does
Hi,
Neil A. Hillard wrote:
I've performed a packet capture and see the following events:
o Squid connects, logs in and changes to the correct directory.
o Squid issues a PORT command (Active FTP connection).
o FTP server acknowledges with a 200.
o Squid issues LIST command
o FTP server
to your
proxy?
You don't happen to have:
client_netmask 255.255.255.0
in your squid.conf? If so, read the description of the client_netmask
directive and you'll know how to resolve the problem.
HTH,
Neil.
--
Neil Hillard[EMAIL PROTECTED
, it works in transparent mode, but does not work in proxy mode.
I don't think this could be that simple???
Please guide me further in right direction.
Rgds,
Vinod Patel
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http://www.whl.co.uk/
Disclaimer
.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
views of Westland Helicopters Ltd.
must ensure that pid_filename
is different for each instance and that they have different cache_dir
settings. They _cannot_ share a cache_dir.
HTH,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http://www.whl.co.uk
it.
I've observed this behaviour from cache.log after performing 'squid -k
debug' and a packet capture off the network.
Any advice would be gratefully appreciated.
TIA,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http
With 1.06 I had to change a hardcoded path in conf.h - SQUID_RAD_CONF
for the location of the configuration file - you may have to do this for
1.07, I'm not sure though.
Combine the with the usual squid ACLs and you should be OK.
HTH,
Neil.
--
Neil Hillard
with this module
Check the log files, run a tcpdump or use ethereal - they should both
tell you what traffic is being generated and you should see whether the
request was successful or not.
Neil.
Regards
Abbas Salehi
- Original Message -
From: Neil A. Hillard
this (ok it's german but i think you will understand):It's an IE
feature !!! Disable 'Friendly HTTP error messages' in IE and hopefully
that'll fix it. Hell, disable it anyway it's absolutely pointless.
HTH,
Neil.
--
Neil Hillard[EMAIL
to escape a question mark:
\.gz\?
Hope this helps,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
views of Westland
,
Neil.
-Original Message-
From: Neil A. Hillard [mailto:[EMAIL PROTECTED]
Sent: 18 January 2005 11:50
To: John O'Reilly
Cc: squid-users@squid-cache.org
Subject: Re: [squid-users] Problem blocking files with urlpath_regex acl
John,
On Tue, 18 Jan 2005 [EMAIL PROTECTED
Marc,
On Wed, 17 Sep 2003, Marc Elsen wrote:
Neil A. Hillard wrote:
Hi,
I've been asked to redirect all unregistered .com and .net domains
(that would now go to VeriSign's sitefinder) to our own internal 'The
domain you entered doesn't exist' page.
Your
acquired a virus...
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
views of Westland Helicopters Ltd.
Systems AB, Sweden
http://www.marasystems.com/, [EMAIL PROTECTED]
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
views of Westland Helicopters Ltd.
,
not sure about 3.0):
1.2.3.4server.domain.com
Anyone got any suggestions ??? I've had similar working on 2.5 but can't
get it to work on 3.0. Is there a howto anywhere ???
Any advice greatfully accepted.
Many thanks in advance,
Neil.
--
Neil
www.linux.org
Or even simpler:
acl user_dst dst www.cnn.com www.linux.org
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
views
will be exceptionally low, but if you are using
websense, then there is nothing new I guess ;)
Know what you mean !!!
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http://www.whl.co.uk/
Disclaimer: This message does not necessarily
to the
netperm-table file:
http-gw:permit-hosts 127.0.0.1 -nojava -noactivex
We are successfully using this to block both activeX and java applets.
Any sites that we trust go into squid's always_direct allow list.
Hope this helps.
Neil.
--
Neil Hillard
required.
HTH,
Neil.
--
Neil Hillard[EMAIL PROTECTED]
Westland Helicopters Ltd. http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
views of Westland Helicopters Ltd.
81 matches
Mail list logo