On Tue, Sep 15, 2009 at 4:46 AM, Henrik Nordstrom
hen...@henriknordstrom.net wrote:
mån 2009-09-14 klockan 19:33 +0530 skrev Avinash Rao:
I am having problems with Squid everyday.. twice everyday to be precise.
Squid stops responding.. I have to restart squid service to resume
service. Even
Hello,
I am trying to block Internet access for people member of one specific
AD Security group called GSIFBENoInternetAccess but I get some issue
with it.
When I try the squid_ldap_group process from shell, the mechanism is
working well. my service account correctly requests our Active
Hi All,
acl ipA src 10.0.0.1
acl acTime time SM
http_access deny ipA acTime
for the above acl need to have custom ERR_ page
deny_info ERR_TIME_DENIED ipA
deny_info ERR_TIME_DENIED acTime
ERR_TIME_DENIED page is in the squid error directory.
what is the correct deny_info parameter to get a
[...]
negotiation (this is what they call it in the specs) is a request header
based
concept. The only request header
available for negotiation is the cookie header. I am not getting the point
why that is such a very bad idea (tm)?
No, the bottom line is that using the same URL for
Hi,
I currently have a server installed and running Squid 2.6 (via Yum), on my
box I have a block of 32 IP address's configured for apache, but Squid just
uses the main IP address (whatsmyip.com), anyway I would like to set SQUID
up so that it cycles through the IP's randomly, so if I go to
IS there a setting in the conf where we can remove the squid version from
error pages?
I feel it's a bit of a security risk to list the squid version as hackers
might attempt to use exploits if they know the version.
Hello Squid-people!
On a network that I'm administering there is a weird ongoing problem.
The basic setup is as follows:
Squid-cache - Apache webnodes - NFS Fileserver
Strangly enough on some of the website's embedded mp3 files are often
cut short to a mere 2sec file (while they are minutes
Hi All.
In our environment (squid-3.0.STABLE13 + CentOS + ntlm + kerberos + win 2k3
ADS), new msn messenger was not working. So we forced the users to use msn
messenger version 8.1 which was working.
But from today morning onwards, we found that, for all the users when they try
to login to
Mario Remy Almeida wrote:
Hi All,
acl ipA src 10.0.0.1
acl acTime time SM
http_access deny ipA acTime
for the above acl need to have custom ERR_ page
deny_info ERR_TIME_DENIED ipA
deny_info ERR_TIME_DENIED acTime
ERR_TIME_DENIED page is in the squid error directory.
what is the correct
vincent.blon...@ing.be wrote:
Hello,
I am trying to block Internet access for people member of one specific
AD Security group called GSIFBENoInternetAccess but I get some issue
with it.
When I try the squid_ldap_group process from shell, the mechanism is
working well. my service account
Vapourmike wrote:
Hi,
I currently have a server installed and running Squid 2.6 (via Yum), on my
box I have a block of 32 IP address's configured for apache, but Squid just
uses the main IP address (whatsmyip.com), anyway I would like to set SQUID
up so that it cycles through the IP's randomly,
On Wed, Sep 16, 2009 at 1:49 PM, Avinash Rao avinash@gmail.com wrote:
On Tue, Sep 15, 2009 at 4:46 AM, Henrik Nordstrom
hen...@henriknordstrom.net wrote:
mån 2009-09-14 klockan 19:33 +0530 skrev Avinash Rao:
I am having problems with Squid everyday.. twice everyday to be precise.
Squid
Henrik Nordstrom wrote the following on 15.09.2009 20:02:
acl somesite dstdomain www.somesite.com somesite.com
acl glasspath url_regex ^/somepath
After correcting the ACL type of the second line to urlpath_regex
(Henrik saw this mistake on his part himself), everything worked fine.
Thanks a
Fili wrote:
Hello Squid-people!
On a network that I'm administering there is a weird ongoing problem.
The basic setup is as follows:
Squid-cache - Apache webnodes - NFS Fileserver
Strangly enough on some of the website's embedded mp3 files are often
cut short to a mere 2sec file (while they
Avinash Rao wrote:
On Wed, Sep 16, 2009 at 1:49 PM, Avinash Rao avinash@gmail.com wrote:
On Tue, Sep 15, 2009 at 4:46 AM, Henrik Nordstrom
hen...@henriknordstrom.net wrote:
mån 2009-09-14 klockan 19:33 +0530 skrev Avinash Rao:
I am having problems with Squid everyday.. twice everyday to
Hi,
I am using SQUID3.0. STABLE19+RHEL+win 2k3 ADS but could not make
connectivity, So i am using NCSA authentican.
Could guide me how you made authentication with WK3AD.
Thanks
Vikas
On Wed, Sep 16, 2009 at 3:45 PM, Truth Seeker
truth_seeker_3...@yahoo.com wrote:
Hi All.
In our environment
using iptables ... use nth module.
Johan
On Wed, Sep 16, 2009 at 5:29 PM, Amos Jeffries squ...@treenet.co.nz wrote:
Vapourmike wrote:
Hi,
I currently have a server installed and running Squid 2.6 (via Yum), on my
box I have a block of 32 IP address's configured for apache, but Squid
just
On Wed, Sep 16, 2009 at 4:20 PM, Amos Jeffries squ...@treenet.co.nz wrote:
Avinash Rao wrote:
On Wed, Sep 16, 2009 at 1:49 PM, Avinash Rao avinash@gmail.com
wrote:
On Tue, Sep 15, 2009 at 4:46 AM, Henrik Nordstrom
hen...@henriknordstrom.net wrote:
mån 2009-09-14 klockan 19:33 +0530
Hi,
I'm a new Squid user, I've been referred to Squid as a possible solution to
the following problem:
I have a VPN client (only runs on Windows) which my colleagues and I use to
RDP to Windows Terminal Server in the office.
I far prefer to use Linux, as I stated above my VPN client only runs
Avinash Rao wrote:
On Wed, Sep 16, 2009 at 4:20 PM, Amos Jeffries squ...@treenet.co.nz wrote:
Avinash Rao wrote:
On Wed, Sep 16, 2009 at 1:49 PM, Avinash Rao avinash@gmail.com
wrote:
On Tue, Sep 15, 2009 at 4:46 AM, Henrik Nordstrom
hen...@henriknordstrom.net wrote:
mån 2009-09-14
Hi,
So assuming this then, I could potentially change the IP address on an
hourly basis? do you have an example ACL rule I could use that would change
the IP based upon time? Im a complete beginner at SQUID and thus I havnt
even setup the IP's (if I have to), I literally installed via YUM and
On Wed, Sep 16, 2009 at 4:30 PM, Amos Jeffries squ...@treenet.co.nz wrote:
Avinash Rao wrote:
On Wed, Sep 16, 2009 at 4:20 PM, Amos Jeffries squ...@treenet.co.nz
wrote:
Avinash Rao wrote:
On Wed, Sep 16, 2009 at 1:49 PM, Avinash Rao avinash@gmail.com
wrote:
On Tue, Sep 15, 2009 at
ons 2009-09-16 klockan 13:49 +0530 skrev Avinash Rao:
The cache.log is not populated:
Odd.. but seems your Squid is getting lost somewhere in the log
rotation.
Some things to try to collect more details.
1. try if squid -k debug gives you some debug output, but probably not
if cache.log is
ons 2009-09-16 klockan 10:53 +0100 skrev J Webster:
IS there a setting in the conf where we can remove the squid version from
error pages?
httpd_suppress_version_string
Regards
Henrik
ons 2009-09-16 klockan 12:04 +0200 skrev Fili:
Strangly enough on some of the website's embedded mp3 files are often
cut short to a mere 2sec file (while they are minutes long). When
performing a hard refresh, the file usually can be played as normal.
I've tried on several operating
This all leads me to think that maybe Squid has something to do with it.
When looking in the cache-spool the mp3-files always seem to have the
right filesize (this is hard to check for certain).
Check the access.log column which lists how many bytes of reply object
sent to the client on
On Wed, Sep 16, 2009 at 5:27 PM, Henrik Nordstrom
hen...@henriknordstrom.net wrote:
ons 2009-09-16 klockan 13:49 +0530 skrev Avinash Rao:
The cache.log is not populated:
Odd.. but seems your Squid is getting lost somewhere in the log
rotation.
Some things to try to collect more details.
Eureka! I have located the problem I've been having.
The culprit is not Squid nor is it NFS. In a sudden bright moment I
realised it was mod_deflate which is gzipping the mp3-file! Some time
ago I implemented a new configuration for it, which seems to be causing
this cut-off. With
ons 2009-09-16 klockan 18:02 +0530 skrev Avinash Rao:
3) how do i use truss, not found on my machine
What OS are you running on the server? If Linux then use strace instead.
4) r...@sunbox:~# gdb /usr/sbin/squid 21557
This GDB was configured as x86_64-linux-gnu...
(no debugging symbols
Recently I found that logfiles are flooding with informations like
access.log
1253094090.451 0 192.168.42.30 TCP_DENIED/407 1725 OPTIONS
http://ab-desktop/ - NONE/- text/html
1253094090.675 0 192.168.42.30 TCP_DENIED/407 1725 OPTIONS
http://ab-desktop/ - NONE/- text/html
I've found another line in my /var/log/messages
squid[15196]: CACHEMGR: unknown@172.20.22.13 requesting 'active_requests'
squid[15196]: assertion failed: ACLProxyAuth.cc:227:
authenticateUserAuthenticated(checklist-auth_user_request)
.
.
.
I'm using an aplicattion ( sqstat ) to look in to the
I figured it out, I should have noticed this (doh)...group3 was a Distribution
group. I'm sure this was documented and I just didn’t see it, but this only
works with AD Security groups.
-Original Message-
From: Nick Duda
Sent: Tuesday, September 15, 2009 1:32 PM
To: 'Henrik Nordstrom'
I've no ideas about the logging facility. But actually, you can try squid
-k retate with logrotate program.
Regards,
--
Banyan He
Network System Security Infrastructure
Mail: ban...@rootong.com
Blog: http://www.rootong.com/blog
LinkedIn: http://www.linkedin.com/in/banyanhe
Website:
Thanks lot,
could you mention the Link, from where i can get the detail code
On Wed, Sep 16, 2009 at 5:30 PM, Truth Seeker
truth_seeker_3...@yahoo.com wrote:
the following things were confgiured;
a. squid.conf with ntlm
b. squid.conf with wbinfo
c. krb5.conf
d. samba for winbind
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello everyone!
We're running a Squid version 3.1.12 with a cache peer configured.
Furthermore Squid is configured to forward every request directly to the
cache peer. Nevertheless Squid is doing a DNS query for every requests
received. At this point
I want to use the ntlm helper not basic. When I use the ntlm helper it just
keeps asking for the username and password over and over. Using the basic
helper works fine.
# /usr/bin/ntlm_auth --username=user1 --domain=testdomain
--password=userpassword
NT_STATUS_OK: Success (0x0)
squid.conf
#
That's some broken clients asking for things without providing the
necessary authentication. There is nothing to do about it,
debug_options doesn't affect access.log .
Your best course of action, if you are in a corporate environment, is
find who is using the PC at address 192.168.42.30,
Vapourmike wrote:
Hi,
So assuming this then, I could potentially change the IP address on an
hourly basis? do you have an example ACL rule I could use that would change
the IP based upon time? Im a complete beginner at SQUID and thus I havnt
even setup the IP's (if I have to), I literally
jmkakabarb wrote:
Hi,
I'm a new Squid user, I've been referred to Squid as a possible solution to
the following problem:
...
Can I reverse proxy RDP?
Not with Squid.
Anyone know whether or not I should pursue this?
For port forwarding generic TCP or UDP traffic to another IP,
On Wed, 16 Sep 2009 17:01:49 +0530, Avinash Rao avinash@gmail.com
wrote:
On Wed, Sep 16, 2009 at 4:30 PM, Amos Jeffries squ...@treenet.co.nz
wrote:
Avinash Rao wrote:
On Wed, Sep 16, 2009 at 4:20 PM, Amos Jeffries squ...@treenet.co.nz
wrote:
Avinash Rao wrote:
On Wed, Sep 16, 2009 at
On Wed, 16 Sep 2009 17:20:05 +0200, Silamael silam...@coronamundi.de
wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello everyone!
We're running a Squid version 3.1.12 with a cache peer configured.
Furthermore Squid is configured to forward every request directly to the
cache
On Wed, 16 Sep 2009 17:20:05 +0200, Silamael silam...@coronamundi.de
wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello everyone!
We're running a Squid version 3.1.12 with a cache peer configured.
Furthermore Squid is configured to forward every request directly to the
cache
42 matches
Mail list logo
