Hello, I've tested squid 2.5-12 without http_acces acl and all pages are blocked. Then I created two deny http_access acls which don't match with my http requests and all pages are unfiltered.
For me it is strange. I've looked in source code and found : debug(28, 3) ("aclCheck: NO match found, returning %d\n", allow != ACCESS_DENIED ? ACCESS_DENIED : ACCESS_ALLOWED); aclCheckCallback(checklist, allow != ACCESS_DENIED ? ACCESS_DENIED : ACCESS_ALLOWED); at the end of aclCheck(aclCheck_t * checklist) in file acl.c. Is this swap really needed for something else? In fact I try to add external acl support in icap patch. The acl structures are not exactly the same in Icap and in squid, then I have to call aclNBCheck with only one acl. Then I had "aclCheck: NO match found, returning 1" as a result of aclCheck. Ghislain Garçon