RE: [squid-users] X-Pad

2009-05-29 Thread joost.deheer
X-Pad avoid browser bug From the headers above, what does the last line (X-Pad) mean? Thanks. apparently more data added to avoid unspecified browser bug. I can only guess, but M$IE configured to show friendly HTTP error messages changes received content to it's own error

[squid-users] RE: minor issues with squid

2009-05-28 Thread joost.deheer
2- complete URL's for a certain page arent opened though the main domain could. for example www.hp.com opens normaly.. though http://www.hp.com/support/BatteryReplacement if clicked would be denied. acl x-type req_mime_type -i ^application/octet-stream$ acl x-type req_mime_type -i

RE: [squid-users] Getting error msgs when trying to start squid

2009-04-21 Thread joost.deheer
I have made I few changes to squid.conf based on what you told me, but proxy still doesn't work. Define doesn't work. Clients get an error? Won't start? Something else? If you get denies, you could try to add a deny_info for every ACL you have, to see which ACL is stopping you: - create a

RE: [squid-users] Error 1067 when starting service in Windows 2003 Server

2009-04-16 Thread joost.deheer
Could not start the Squid service on local computer. Error 1067: the process terminated unexpectedly. In case you didn't install squid in c:\squid: Did you run 'squid -O -f d:\path\to\config -n Servicename' to tell the service where the config is? And in addition to Guido's checks: - Check

RE: [squid-users] Error 1067 when starting service in Windows 2003 Server

2009-04-16 Thread joost.deheer
2009/04/15 11:11:11| Loaded Icons. 2009/04/15 11:11:11| commBind: Cannot bind socket FD 12 to xx.xx.xxx.xxx:80: (10013) WSAEACCES, Permission denied. IIS automatically binds to *:80, even if the websites are all bound to a single IP address. Solution: disable socket pooling in IIS:

RE: [squid-users] CONNECT method support(for https) using squid3.1.0.6 + tproxy4

2009-04-10 Thread joost.deheer
HTTPS cannot be spoofed, its part of the security involved with the SSL layer. Technically, HTTPS -can- be spoofed, using a wildcard trusted certificate for *. I know that BlueCoat supports this kind of interception to be able to scan HTTPS traffic. It's basically a trusted MITM attack. The

[squid-users] Squid 2.7STABLE6 for Windows?

2009-03-05 Thread joost.deheer
Hello, Usually I download the Windows binary from Acme (http://squid.acmeconsulting.it/download/dl-squid.html), but 2.7STABLE6 hasn't been published there (yet). Is this service discontinued, is it commercial now, or is there another place I can get Windows binaries? In case no one provides

RE: [squid-users] Squid Crashes when cache dir fills

2009-02-25 Thread joost.deheer
I have cache_dir ufs /var/log/squid 6 255 255 with a 80GB harddrive. - ufs is an old store system, aufs will probably give you better performance. - How is the inode usage on the disk? - The disksize is irrelevant, the partition size of the partition where /var/log/squid resides is relevant.

[squid-users] Calamaris questions

2009-02-05 Thread joost.deheer
Hello, Is Calamaris still maintained? The last version on calamaris.cord.de is from 2006, as far as I can see. I have a few problems with Calamaris 2.99: - SOURCEHASH isn't recognised as a peer selection option. I now run the log through sed to change SOURCEHASH to FIRST_UP_PARENT, but it would