Hi,
I have configure my Squid to work only for some time for one group of
users. I find that this is not being effective. Below is the squid conf file
# SQUID DEFAULTS
http_port 8000
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
cache
Hello,
I surf to squidguard homepage and i've downloaded the blacklist.I've created
an acl
acl expressions url_regex "/etc/squid/expressions"
http_access deny expressions
But when i've restarted squid i got an error:
aclParseRegexList: Inavlid regular expression '(adultos| adult|porn|...)
Inval
Hi everyone,
I'm using squid 2.6 with samba authentication. My problem is the
following. When I use a blank login and an existing (or existed) login
as password on browsers, access is granted although it should not. For
example, i had a user "utilisateur" (samba and system accounts) which
worked (i
Hi All,
I want my users download software on weekend only, I set a ACL as following:
ACL download urlpath_regex \.exe$ \.EXE$
And
Http_access allow download weekend
Http_access deny all
If the users type like
http://www.abc.com/setup.exe, I can not download
If the users type like
http://w
Hello, i have proxy server transparent running in
OpenBSD 4.4
with Mysql
cautive portal
i create acl helper, to lookup mysql database, this return ej squid put
192.168.35.121
"OK user=$usuerofdb\n"
this is work fine, but my problem is when i need loggin other user from
192.168.35.121
, in ac
Hello, i have proxy server transparent running in
OpenBSD 4.4
with Mysql
cautive portal
i create acl helper, to lookup mysql database, this return ej squid put
192.168.35.121
"OK user=$usuerofdb\n"
this is work fine, but my problem is when i need loggin other user from
192.168.35.121
, in acce
I am believe the user you're talking about is accessing the URL's
contained in
acl exceptions url_regex "/etc/squid/data/exceptions"
Because as far as I see, the only way for him/her to bypass the time
limitation is if he/she gets allowed by
http_access allow exceptions
CMIIW
Rgds,
[p]
Jag
Pandu E Poluan wrote:
I am believe the user you're talking about is accessing the URL's
contained in
acl exceptions url_regex "/etc/squid/data/exceptions"
Because as far as I see, the only way for him/her to bypass the time
limitation is if he/she gets allowed by
http_access allow exceptions
Hello,
I have a problem with my acl urlpath_regex
Extract from squid.conf :
acl all src 0.0.0.0/0.0.0.0
acl invalid_uri urlpath_regex ^/%
http_access deny invalid_uri
http_access allow all
Now some test with wget :
wget http://zayin.yahubb.cn/%ag
--17:11:16-- http://zayin.yahubb.cn/%25ag
Reso
On tis, 2007-08-21 at 14:17 +0200, Johann PAVIS wrote:
> I'm using squid 2.6 with samba authentication. My problem is the
> following. When I use a blank login and an existing (or existed) login
> as password on browsers, access is granted although it should not.
Probably the share smb_auth is con
Thanks a lot. This was it ! Sorry for the disturbance.
For other people who could encounter this problem, don't forget to put a
line : 'gest ok = no' under your netlogon share.
--
Johann Pavis
Henrik Nordstrom a écrit :
> On tis, 2007-08-21 at 14:17 +0200, Johann PAVIS wrote:
>> I'm using squid 2
On Thu, 28 Oct 2004, Luu Trung Duong wrote:
If the users type like
http://www.abc.com/setup.exe, I can not download
If the users type like
http://www.abc.com/setup.exe, they can download
Where is the difference? Looks very much the same to mee.. (and should
match your acl..)
Regards
Henrik
, October 28, 2004 7:50 PM
To: Luu Trung Duong
Cc: 'squid-users'
Subject: Re: [squid-users] Problem with ACL ???
On Thu, 28 Oct 2004, Luu Trung Duong wrote:
> If the users type like
>
> http://www.abc.com/setup.exe, I can not download
>
> If the users type like
>
> htt
, October 28, 2004 7:50 PM
To: Luu Trung Duong
Cc: 'squid-users'
Subject: Re: [squid-users] Problem with ACL ???
On Thu, 28 Oct 2004, Luu Trung Duong wrote:
> If the users type like
>
> http://www.abc.com/setup.exe, I can not download
>
> If the users type like
>
> htt
>
> I want my users download software on weekend only, I set a ACL as following:
>
> ACL download urlpath_regex \.exe$ \.EXE$
Are you using ACL ??!
Try as,
acl download urlpath_regex -i \.exe$
-i will be used for case in-sensitive
>
> Http_access allow download weekend
> Http_access
The regular expression \.exe$ will match request strings ending with
".exe", bit it will not match .exe?". If you want to match ".exe"
anywhere else in the string, remove the ending $ like so:
acl download urlpath_regex -i \.exe
Muthukumar wrote:
I want my users download software on weekend onl
>
>
>
> -Original Message-
> From: Henrik Nordstrom [mailto:[EMAIL PROTECTED]
> Sent: Thursday, October 28, 2004 7:50 PM
> To: Luu Trung Duong
> Cc: 'squid-users'
> Subject: Re: [squid-users] Problem with ACL ???
>
> On Thu, 28 Oct 2004, Luu T
Rodrigo Gliksberg wrote:
Hello, i have proxy server transparent running in
OpenBSD 4.4
with Mysql
cautive portal
i create acl helper, to lookup mysql database, this return ej squid put
192.168.35.121
"OK user=$usuerofdb\n"
this is work fine, but my problem is when i need loggin other user
fr
> Hello, i have proxy server transparent running in
>
> OpenBSD 4.4
> with Mysql
> cautive portal
>
>
> i create acl helper, to lookup mysql database, this return ej squid put
> 192.168.35.121
> "OK user=$usuerofdb\n"
>
> this is work fine, but my problem is when i need loggin other user from
> 192
> > Hello, i have proxy server transparent running in
> >
> > OpenBSD 4.4
> > with Mysql
> > cautive portal
> >
> >
> > i create acl helper, to lookup mysql database, this return ej squid put
> > 192.168.35.121
> > "OK user=$usuerofdb\n"
> >
> > this is work fine, but my problem is when i need logg
gui:
Hello,
I have a problem with my acl urlpath_regex
Extract from squid.conf :
acl all src 0.0.0.0/0.0.0.0
acl invalid_uri urlpath_regex ^/%
http_access deny invalid_uri
http_access allow all
Now some test with wget :
wget http://zayin.yahubb.cn/%ag
--17:11:16-- http://zayin.yahubb.cn/%25
gui:
So what can I do to match the uri beginning with "%" ?
I try
acl invalid_uri urlpath_regex ^/\%
but don't work.
What is the right regex ?
I have said, that isn't a "%" after uri_unesape.
You cound't have a regex to match it, uness you know what it should be
after the string is unes
Hello,
I have encountered a problem with ACL. I want to disable download all
kinds of files for subnet specified except pdf, doc, xls, txt, zip. I
have created officeFile file wich is shown below:
\.[Dd][Oo][Cc]$
\.[Tt][Xx][Tt]$
etc.
but,
acl clients 192.168.56.0/24
acl officeFiles urlpath_rege
On 01/11/10 12:46, Konrado Z wrote:
Hello,
I have encountered a problem with ACL. I want to disable download all
kinds of files for subnet specified except pdf, doc, xls, txt, zip. I
have created officeFile file wich is shown below:
\.[Dd][Oo][Cc]$
\.[Tt][Xx][Tt]$
etc.
but,
acl clients 192.16
Hello,
Thanks for reply but I still have problem
My all acls and http_access
acl clients 192.168.56.0/24
acl funWebsites dstdom_regex "/etc/squid/funWebsites"
acl workingHours time M T W H F 8:00-16:00
acl officeFiles urlpath_regex "/etc/squid/officeFiles"
http_access deny clients workingHours fu
On Mon, 1 Nov 2010 14:41:19 +0100, Konrado Z
wrote:
> Hello,
> Thanks for reply but I still have problem
>
> My all acls and http_access
> acl clients 192.168.56.0/24
> acl funWebsites dstdom_regex "/etc/squid/funWebsites"
> acl workingHours time M T W H F 8:00-16:00
There are not meant to be an
Thanks for your response.
>> acl officeFiles urlpath_regex "/etc/squid/officeFiles"
>>
>> http_access deny clients workingHours funWebsites
>> http_access deny clients !officeFiles
>> http_access allow all
>
> NP: "allow all" means traffic from the entire Internet. That should be
> "allow clients"
On Mon, 1 Nov 2010 23:01:42 +0100, Konrado Z
wrote:
> Thanks for your response.
>
>>> acl officeFiles urlpath_regex "/etc/squid/officeFiles"
>>>
>>> http_access deny clients workingHours funWebsites
>>> http_access deny clients !officeFiles
>>> http_access allow all
>>
>> NP: "allow all" means tr
OK so I have definied
acl webMimes rep_mime_type -i "etc/squid/mimes"
Mimes file:
text/(html|css|plain|richtext)
application/(msword|pdf|vnd.ms-powerpoint|vnd.ms-excel|zip|x-compress)
image/(bmp|gif|jpeg|png|tiff|gif)
and http_access section:
#http_access deny clients workingHours funWebsites
ht
Yep, of course it shoud be http_reply_access.
Thanks Amos it's that what I need
2010/11/2 Konrado Z :
> OK so I have definied
>
> acl webMimes rep_mime_type -i "etc/squid/mimes"
>
> Mimes file:
> text/(html|css|plain|richtext)
> application/(msword|pdf|vnd.ms-powerpoint|vnd.ms-excel|zip|x-compress
But how to write properly sth like this
'http_access allow clients|managers|clients2 #Squid cannot start with that line'
I want to replace 'http_access allow all' line with this given above.
Best
2010/11/2 Konrado Z :
> Yep, of course it shoud be http_reply_access.
> Thanks Amos it's that what I
On 03/11/10 09:57, Konrado Z wrote:
But how to write properly sth like this
'http_access allow clients|managers|clients2 #Squid cannot start with that line'
I want to replace 'http_access allow all' line with this given above.
Best
http://wiki.squid-cache.org/SquidFaq/SquidAcl#Common_Mistakes
Hello,
We recently had to upgrade a proxy server from Debian 4 to Debian 5 and
installed Squid 2.7 :
#squid -v
Squid Cache: Version 2.7.STABLE3
configure options: '--prefix=/usr' '--exec_prefix=/usr'
'--bindir=/usr/sbin' '--sbindir=/usr/sbin' '--libexecdir=/usr/lib/squid'
'--sysconfdir=/etc/
On 22/12/10 22:34, Francis GASCHET wrote:
Hello,
We recently had to upgrade a proxy server from Debian 4 to Debian 5 and
installed Squid 2.7 :
#squid -v
Squid Cache: Version 2.7.STABLE3
configure options: '--prefix=/usr' '--exec_prefix=/usr'
'--bindir=/usr/sbin' '--sbindir=/usr/sbin' '--libexecd
Thank you Amos, it works.
I just forgot that in the xxx_access directives the ACLs are ANDed !
Ciao!
--
Francis GASCHET / NUMLOG
http://www.numlog.fr
Tel.: +33 (0) 130 791 616
Fax.: +33 (0) 130 819 286
Le 12/22/2010 02:23 PM Amos Jeffries a écrit :
On 22/12/10 22:34, Francis GASCHET wrote:
35 matches
Mail list logo