You also need never_direct in such case..
Regads
Henrik
On Friday 28 February 2003 08.30, Ben White wrote:
Henrik,
How do I tell squid to redirect requests to the other
cache on my network if squid cannot fulfill a client's
URL requests ?
My company has a network link to our HQ. So if
Looks good, except that there should not be need to patch the kernels
or Squid, and some of the minor kernel config options discussed no
longer exists as they are now dynamic..
Regards
Henrik
On Friday 28 February 2003 02.10, Jay Turner wrote:
I found this rather old version at:
I think you have client_db off in your squid.conf..
having it off is generally a good thing unless you really want
statistics in this specific page of cachemgr.
For information about requests and hits on your proxy see General
Runtime Information.
Regards
Henrik
On Friday 28 February 2003
Just want to follow-up my question on the result of my cache manager..
Cache Clients:
TOTALS
ICP : 0 Queries, 0 Hits ( 0%)
HTTP: 0 Requests, 0 Hits ( 0%)
Why is it that its 0 since i have lots of TCP_HIT on my access.log
---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus
Hello,
I am using samba 2.2.7 and squid 2.5-stable1.
I need that only people belonging to specific NT groups can have
access to the intranet, or our intranet,...
I've failed to make it work with wb_group as external helper, but it
is running fine with wbinfo_group.pl
Is there any impact to use
On Friday 28 February 2003 10.52, [EMAIL PROTECTED] wrote:
Hello,
I am using samba 2.2.7 and squid 2.5-stable1.
I need that only people belonging to specific NT groups can have
access to the intranet, or our intranet,...
I've failed to make it work with wb_group as external helper, but
it
fre 2003-02-28 klockan 11.38 skrev Jerome Leonard:
hi,
i have a squid with user auth (NTLM or LDAP). Is it possible to send
the user login in the http headers to a parent proxy (not necessary a
squid) ? I have not seen it in the FAQ.
Yes.
See the login= option to the cache_peer directive
I think the question is more if messenger supports the use of HTTP
proxies requiring authentication. Probably not.
Squid-users: Anyone having experience of this?
Regards
Henrik
fre 2003-02-28 klockan 10.36 skrev cdjhv patel:
hii developers,
i have enabled my squid2.5 with winbind
On Fri, 2003-02-28 at 22:55, [EMAIL PROTECTED] wrote:
Now the problem:
During one of the first steps of NTLM authentication squid send a YR code
to the helper without adding any further data retrieved from the
Proxy-Authorization field sent by the client.
This field contains data such as
On Fri, 2003-02-28 at 22:55, Henrik Nordstrom wrote:
I think the question is more if messenger supports the use of HTTP
proxies requiring authentication. Probably not.
Squid-users: Anyone having experience of this?
Options-Advanced-Use Proxy-Http Proxy, fill out the fields
Rob
--
GPG key
hi everyone.
I need to create my own error pages in squid.
My first problem was that I couldn't identify with page matches with
with error.
For instance, when error 404 occures which one is the page displayed.
The second problem is that I created some html pages which also display
an image.
to all,
when testing from a command line, i can only authenticate user's login name against
active directory that has no space in the object, however when authenticating user
who's login name is one string only, but object name includes space (ie. first last)
will not be authenticated.
how do
Hello,
I'm getting the folloing in the cache.log file and it seems this happens
with kazaa sites only. Any idea what that means.
Thanks,
Val
2003/02/28 07:56:34| varyEvaluateMatch: Oops. Not a Vary match on second
attempt
, 'http://desktop.kazaa.com/us/images/home/60_60_braidedhair_h.gif'
Hello All,
Wheather ntlm_auth sends encrypted password or
cleartext password to the windows server.
Regards,
sadha
__
Do you Yahoo!?
Yahoo! Tax Center - forms, calculators, tips, more
http://taxes.yahoo.com/
Hi all,
I have compiled squid-2.5.STABLE1 --with-snmp and i have the following
lines pertaining to snmp in my squid.conf:
acl admin src 192.168.10.10/32
acl snmppublic snmp_community public
snmp_port 3401
snmp_access allow snmppublic admin
snmp_access deny all
snmp_incoming_address 0.0.0.0
fre 2003-02-28 klockan 13.07 skrev Robert Collins:
You can't solve this. The correct domain information is not available at
that step in the auth process. (see http://devel.squid-cache.org/ntlm
for more info).
To further explain what robert and the devel docs says is that the
initial
You need to publish any images on some web server which your users have
access to, and refer to them by full URL.
Another option, but slightly obscure one, is to load the required images
as icons in Squid (see mime.conf) and then refer to them by
/squid-internal-static/icons/filename
Regards
That Squid is confused about the Vary header returned from this site.
Please register a bug report for this issue. If you can please also
enable log_mime_hdrs in squid.conf and include access.log information
for a couple of different requests for the same failing URL.
Squid automatically
when i test squid_ldap_auth from a command line and i pass it for example test (as
login name) and test (as password) then it replies OK. But when i pass it object with
a space such as test tp with password test it returns ERR.
The test tp is an example of an object from active directory
fre 2003-02-28 klockan 14.49 skrev shadha nker:
Wheather ntlm_auth sends encrypted password or
cleartext password to the windows server.
Neither. It sends a session unique one-way hash of the password.
See http://devel.squid-cache.org/ntlm/ for some additional information.
--
Henrik
Hi Henrik:
Would not call it useful in a proxy. It is useful in accelerators but
there the functionality is already available in Squid (a hidden
define needs to be set in Squid-2.5 and earlier.. only to make it
harder to find to make sure people who run transparent proxies do not
think this
Hello Henrik,
My configuration requirement is when user authenticate against domino web
server it will sent new url
http://squid.xyz.com/mail.xyz.com/mail/user.nsf back to the external user
browser. That is returned as a request to
squid.xyz.com. The trick is to get webmail use internal (private)
Usernames in the login process is encoded with URL encoding, so Tomas
Palfi becomes Tomas%20Palfi and test tp becomes test%20tp
Regards
Henrik
fre 2003-02-28 klockan 15.08 skrev Tomas Palfi:
when i test squid_ldap_auth from a command line and i pass it for example test (as
login name) and
fre 2003-02-28 klockan 15.33 skrev Lucas Brasilino:
b) The browser will request again for the password on each new web
site requested.
I didn't realise this issue since squid shouldn't send 401 Unauthorized
to browser for each new web site, only in the first
access
Ok, let's go for some scenarios.
1) User domain and workstation domain are the same.
Using the domain of the initial negotiate packet we can achieve multiple
not trusted domain authentication.
2) User domain differs from workstation domain but the two domains are in a
trust relationship
Given
Hello once again!
I swear, management drives me nuts. Supervisors drive me nuts. People
who tell me one thing that they want, then tell me something different
after I already give them what they want drive me nuts! Argh!
Okay, so I'm going to give a run-down of what I need to do, then find
Hi Henrik:
There is no such thing as a login session in HTTP, and if it was it
would certainly not span multiple web sites..
The only reason why you do not see a login box in each and every request
is because your web browser is smart and assumes that if login was
required for one request to the
[EMAIL PROTECTED] wrote:
Ok, let's go for some scenarios.
1) User domain and workstation domain are the same.
Using the domain of the initial negotiate packet we can achieve multiple
not trusted domain authentication.
In theory yes.
2) User domain differs from workstation domain but the
Probably me..
L1 = cache_dir size * 1024 / L2 / L2 / 8 * 2
or simplified for L2 = 256 (default, recommended)
L1 = size / 256
With modern Squids you can go down maybe 40% if you like, but having to
many does not hurt except that squid -z takes longer to run..
Regards
Henrik
Alex Sharaz
Rost, Werner a écrit :
You may try
acl poste1 src 192.168.0.1/255.255.255.255
acl poste2 src 192.168.0.3/255.255.255.255
IT works fine
thank
Henrik,
So, with that being said, I'm stuck. I had planned on creating
groups
in the domain, and going about it using wb_group for everything.
Too
many dependencies... (/me beats head on desk.)
Well.. delegate to the helpdesk of updating the groups on the Squid
server using vi and you
On Friday 28 February 2003 21.26, Scott Wrosch wrote:
Not likely to happen, but I'm going to try again. He seems to
think that it's one more thing that could go wrong. But, if I let
him do the maintaining of the proxy, I could make him see the error
of his ways. Especially considering we
Hello Henrik,
I changed the script as you said as
#!/usr/bin/perl
while ($url = ) {
@list = split(/, $url);
$newurl=http:/;
for($i=3;$i@list;$i++) {
$newurl=$newurl./.$list[$i];
}
print $newurl;
}
When i test in command line
[EMAIL
On Saturday 01 March 2003 08.32, olegs wrote:
Hello!
from my squid.conf
---
acl SUB0 src 192.168.0.0-192.168.0.10
acl SUB1 src 192.168.0.0-192.168.0.10
delay_class 2 1
delay_parameters 2 12800/12800
delay_access 2 allow
hello
this message appear when i try installing squidguard in module webmin
of course i read the faq
Question
I tried to install module X but it says Module X does not
support this operating
system (Mandrake Linux 8.0). What can I do?
35 matches
Mail list logo