Re: [squid-users] https://wiki.squid-cache.org provides invalid certificate chain ...

I have already acted on it but couldn’t communicate in time, sorry. Thanks for notifying and for looking into it. On Fri, 17 Nov 2017 at 17:52, Amos Jeffries wrote: > On 18/11/17 01:39, Walter H. wrote: > > for more information see > >

Re: [squid-users] wiki.squid-cache.org SSL configuration problem ...

Hi, it's been fixed last week. Thanks again for the heads-up! On Tue, Aug 8, 2017 at 9:00 PM, Francesco Chemolli wrote: > On 8 Aug 2017, at 19:06, Walter H. wrote: > > Hello, > > the intermediate certificate which is provided doen't go with the

[squid-users] Wiki outage - solved

Hi all, due to a hard drive failure on one of the servers we run, the wiki has been unavailable in the past couple of days. The volunteers overseeing the project infrastructure have been able to restore the service by moving it to a different hardware, and the wiki should now become

Re: [squid-users] GoLang Based delayer

Hi Eliezer, Please list it as "realted software" on the wiki. On Tue, Oct 25, 2016 at 3:53 PM, Eliezer Croitoru wrote: > Inspired by Francesco Chemolli delayer at: > http://bazaar.launchpad.net/~squid/squid/trunk/view/head:/src/acl/external/d >

Re: [squid-users] SSO and Squid, SAML 2.0 ?

Hi Fred, I assume that by "implicit" you mean "transparent" or "interception". Short answer, not possible: there is nothing to anchor cookies to. It could be possible to fake it by having an auxiliary website doing standard SAML and feeding a database of associations userid-ip. It will fail to

Re: [squid-users] We have a big problems with Squid 3.3.8, it's a bug ?

Are you using BASIC, ntlm or kerberos? Do you know that user's password in order to run some tests? Do you have some other proxy or box where you can run some tests? AD is a complex system, so the first thing to do is to understand I'd the problem is caused by ad, by the system, by something

Re: [squid-users] Squid Crashing

Hi, it's all in the logs you posted: ipcCreate: fork: (12) Cannot allocate memory WARNING: Cannot run '/lib/squid3/ssl_crtd' process. ... FATAL: Failed to create unlinkd subprocess You've run of system memory during startup. On Tue, Feb 9, 2016 at 4:47 PM, Panda Admin

Re: [squid-users] Squid Crashing

out the CPU but not the memory. So, yeah...still confused. >> >> On Tue, Feb 9, 2016 at 10:55 AM, Kinkie <gkin...@gmail.com> wrote: >> >>> Hi, >>> it's all in the logs you posted: >>> >>> ipcCreate: fork: (12) Cannot allocate memory >>>

Re: [squid-users] Squid-4.0.4 on FreeBSD

Hi, I see that there is no -I/usr/local/include option to the compiler. Add that as a CPPLAGS when calling configure (e.g. CPPFLAGS=-I/usr/local/include ./configure ) this should fix the build for you. On Wed, Jan 13, 2016 at 4:25 PM, Odhiambo Washington wrote: > I am

Re: [squid-users] Squid-4.0.4 beta is available

Hi eliezer, This looks like a broken or not completely installed libstdc++. Could you check that all packages mentioned at http://wiki.squid-cache.org/BuildFarm/CentosInstall are installed on your build system? On Sun, Jan 10, 2016 at 6:02 PM, Eliezer Croitoru wrote: > I

Re: [squid-users] Squid is not worked in OpenVZ VPS.

for me, but OpenVZ is not. >>> >> >>> the second logs is so strange, www.vpsnine.com is my OpenVZ VPS >>> provider domain name, I never access it from my local browser. >>> and not like another XEN VPS, those log output is very very slow. >>&g

Re: [squid-users] Slow App through Proxy

Hi, Do you see anything denied in the squid logs? From what you say it could be related to a failing attempt to validate a certificate. On Dec 18, 2015 17:25, "Patrick Flaherty" wrote: > Hello, > > > > We have an app configured to use Squid Proxy (3.5.11). The client

Re: [squid-users] squid 3.4, dstdomain

Hi, it works exactly as you expect. "dstdomain addons.mozilla.org" does not block subdomains. On Thu, Dec 10, 2015 at 11:02 AM, wrote: > 2015/12/10 10:33:49| ERROR: '.addons.mozilla.org' is a subdomain of > 'addons.mozilla.org' > > > I thought >

Re: [squid-users] squid 3.4, dstdomain

On Thu, Dec 10, 2015 at 11:43 AM, <massimo.s...@asl.bergamo.it> wrote: > Massimo >> 2015/12/10 10:33:49| ERROR: '.addons.mozilla.org' is a subdomain of >> 'addons.mozilla.org' > > > Kinkie : >> it works exactly as you expect. "dstdomain addons.

Re: [squid-users] Problems with ldap authentication

On Tue, Dec 8, 2015 at 6:14 PM, Marcio Demetrio Bacci wrote: > Hi > > In the Squid Server, I want only basic authentication. > > The command: > > /usr/lib/squid3/basic_ldap_auth \ >-b cn=users,dc=empresa,dc=com,dc=br \ >-D cn=proxy,cn=users,dc=empresa,dc=com,dc=br

Re: [squid-users] Disabling IP6 in 3.5.x

Hi Patrick, ./configure --disable-ipv6 will do the trick. On Thu, Dec 3, 2015 at 12:43 AM, Patrick Flaherty wrote: > Hello, > > > > Is there a way to disable IP6 in the 3.5.x Squid builds? > > > > Thanks > > Patrick > > > ___

Re: [squid-users] ntlm_auth defaulting to succeed

Hi, you can check the ntlm_fake_auth helper; it'll blandly trust anything the user says. On Wed, Dec 2, 2015 at 10:10 PM, Noel Kelly wrote: > Hello All > > We have been using Squid and ntlm_auth for many years with mainly success. > However we have always had a few

Re: [squid-users] Accessing squid from a url rather than proxy settings

Hi, a proxy is different from a webserver. The protocol they speak is slightly different in order to support the use-cases (nothing would technically prevent from having webservers use a language more similar to proxies); what you are trying to do is to use Squid (the proxy) as if it was a

Re: [squid-users] [feature request] Websocket Support for Intercept Mode

Hi Tarik, as far as I know, no developer is working on that. The best way to get that feature would be to sponsor a developer to implement it. On Tue, Oct 27, 2015 at 11:54 AM, Tarik Demirci wrote: > Hello, > Is there any plan to add support for websocket when using

Re: [squid-users] deny rep_mime_type

Hi, I suspect (unverified) that acl dom dstdomain .example.com acl type rep_mime_type base/type http_reply_access deny dom type http_reply_access allow all will do what you need On Wed, Oct 21, 2015 at 9:36 PM, HackXBack wrote: > hello , > can we deny rep_mime_type for

[squid-users] Volunteers sought

-patched version. If you are interested, please get in touch with me for the details. Thanks! -- Kinkie ___ squid-users mailing list squid-users@lists.squid-cache.org http://lists.squid-cache.org/listinfo/squid-users

Re: [squid-users] High-Availability in Squid

Hi, please see http://wiki.squid-cache.org/Features/MonitorUrl. It's available in squid 2.6 , and is one of the last few features who haven't yet made it to Squid 3.X. If anyone is interested, code and sponsorships are always welcome :) On Thu, Aug 27, 2015 at 12:10 PM, Imaginovskiy

Re: [squid-users] 16G Virtual Mem

Hi, yes, it could be, depending on your configuration. Please see http://wiki.squid-cache.org/SquidFaq/SquidMemory On Fri, Aug 28, 2015 at 4:32 PM, Jorgeley Junior jorge...@gmail.com wrote: Guys, is this really normal??? ​ -- ___

Re: [squid-users] Mac OS X Updates

Hi John, according to the article you link to, it's not possible to cache these updates: Apple puts some effort as a conscious choice to make it so. Updates for older versions of MacOS may be over HTTP, newer ones are over HTTPs over port 443 and and dynamically-generated ports. HTTP could be

Re: [squid-users] forward proxy - many users with one login/passwd.

On Thu, Jul 30, 2015 at 11:57 PM, Berkes, David david.j.ber...@pjc.com wrote: Just a basic question. I have a 3.5.0.4 forward proxy setup with basic authentication for my MDM proxy (iphones). All iphones are set with the global proxy and identical user-name/password. They will be on an LTE

Re: [squid-users] a problem about reverse proxy and $.ajax

Hi, What is in the squid access.log for that request? On Thu, Jul 16, 2015 at 5:27 PM, johnzeng johnzeng2...@yahoo.com wrote: Hello dear All : i am writing testing download rate program recently , and i hope use reverse proxy ( squid 3.5.x) too , but if we use reverse proxy and i found

Re: [squid-users] mimeInit: /etc/squid/mime.conf: (13) Permission denied

Hi all, file system corruption at times manifests itself as permission problems. Can you fsck? On Fri, Jun 12, 2015 at 12:00 PM, yashvinder hooda yashvinder@gmail.com wrote: Hi Amos Squid pkg version is 3.5.2 and ‎it's running on openwrt. In logs I can see one more permission related

Re: [squid-users] Can files be placed on a RAID volume now?

Yes, it still applies; it is a FAQ. See http://wiki.squid-cache.org/SquidFaq/RAID On Sun, Jun 7, 2015 at 12:35 PM, TarotApprentice tarotapprent...@yahoo.com wrote: I recall from Squid 2.7 days the recommendation not to put the cache files on a RAID volume under Windows. Does that restriction

Re: [squid-users] Squid Bugzilla is down

Hi, sorry, we had a severe OOM on the main squid server. Now rebooted and hopefully better plugged. We will see about upgrading the server as soon as possible. On Thu, Apr 30, 2015 at 12:10 PM, Yuri Voinov yvoi...@gmail.com wrote: Amos, what's up with bugzilla? It down and not available.

Re: [squid-users] Squid Bugzilla is down

Should be fine now. Thanks for notifying of the issue. On Thu, Apr 30, 2015 at 7:42 PM, Yuri Voinov yvoi...@gmail.com wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Now server produces 500 error. 30.04.15 23:39, Kinkie ?: Hi, sorry, we had a severe OOM on the main squid

Re: [squid-users] Client delay pools ...doesn't work

Hi Fiorenza, does your browser display the same error when you remove that config line and reconfigure squid? On Fri, Apr 10, 2015 at 3:51 PM, Fiorenza Meini fme...@esseweb.eu wrote: Hi, I'm testing on a 3.4 squid release the client_delay_poolfunctionality. It seems that isn't working: on my

Re: [squid-users] Strange message when doing a squid -k parse or reconfigure

Hi, I've searched for these strings in squid, couldn't find them. Maybe this is emitted by some library? On Tue, Apr 7, 2015 at 5:16 PM, dweimer dwei...@dweimer.net wrote: My Squid Process seems to be working fine, but I noticed an unusual message when testing the squid configuration squid:

Re: [squid-users] Fwd: Squid 3.5.2 Compile Error

Yes, and I thought that as well. My reaction would be to make sure that the secondo variable is guaranteed defined as 0. On Sun, Mar 8, 2015 at 6:26 AM, Amos Jeffries squ...@treenet.co.nz wrote: On 8/03/2015 7:33 a.m., Kinkie wrote: Could you please attach your config.log file? FYI

Re: [squid-users] Fwd: Squid 3.5.2 Compile Error

Could you please attach your config.log file? Thanks On Sat, Mar 7, 2015 at 5:27 AM, Michel Peterson michel.petter...@gmail.com wrote: Hi friends, I'm trying to compile squid 3.5.2 on debian wheezy and I am getting the following error after running the command make all: Making all in

Re: [squid-users] Squid 3.5.1 install

Hi Matt, could you share the last 20 lines of the build output, and what environment you are building on? The developers regularly test builds on 15 or so different OSes (see http://build.squid-cache.org) but yours may be different. You may also want to check the squid wiki for details on how to

Re: [squid-users] DiskThreadsDiskFile::openDone squid 3.5.0.4

Nothing to worry about. The files were removed by some outside software and were not found. Squid will manage the error and carry on. On Fri, Dec 26, 2014 at 1:22 PM, HackXBack hack.b...@hotmail.com wrote: Hello squid , after using 3.5.0.4 on fresh debian system i see many errors in cache.log

Re: [squid-users] Squid 3.4.10 incorrectly configured on Solaris 10

Hello Yuri, this is probably a system header dependency. Could you check if the manuals mention anything about ipfmutex_t ? If they do, at the beginning of the page they should include a list of #include ... lines. Could you copy-paste these lines here? Thanks On Thu, Dec 18, 2014 at 3:01 PM,

Re: [squid-users] Packet Marking for Traffic Shaping

Hello Osmany, have you tried http://wiki.squid-cache.org/Features/QualityOfService ? Kinkie On Fri, Dec 5, 2014 at 4:15 PM, Osmany Goderich ogoder...@gmail.com wrote: Hi everyone, I was googling and I couldn't find anything clear about the subject, but I am trying to make Squid mark

Re: [squid-users] Authentication\Authorization using a PAC file?

Hi Eliezer, I don't think so. PACfiles have no access to the DOM or facilities like AJAX, and are very limited in what they can return or affect as side-effects. In theory it could be possible to do something, but in practice it would be only advisory and not secure: a pacfile must by definition

Re: [squid-users] Centralized Squid - design and implementation

One word of caution: pactester uses the Firefox JavaScript engine, which is more forgiving than MSIE's. So while it is a very useful tool, it may let some errors slip through. On Nov 18, 2014 9:45 PM, Jason Haar jason_h...@trimble.com wrote: On 19/11/14 01:39, Brendan Kearney wrote: i would

Re: [squid-users] [squid-dev] When i redirected to more traffic to squid box for testing goal via web-polygraph . find error info OS probably ran out of ephemeral ports at 192.168.2.1:0

You want to ask this question to the polygraph authors; squid users and developers are not really the right place to ask. I don't know about the details, but that error message probably means that your bots are overwhelming the TCP stack, which can't free ephemeral ports quickly enough due to TCP