"Logu" <[EMAIL PROTECTED]> writes:
>>I did this, and it works:
>>
>> header_access Via deny all
>> header_access X-Forwarded-For deny all
>>
>> .vp
>>
>
> Should the documentation on the configuration file be fixed ?. It says
> "If set, Squid will include a Via header in requests and replies.". B
Is there a way for me to block freegate tunneling?
I try to check their useragent. And it uses IE.
Try to block the IPs but there are more than 200 ips ...
the patterns that freegate is using is
http://68.83.184.158/bpzkpubr/foU8i/X_d5v2hT/cqPjrkf/Pl--k/IicH/obm/mHjD6agNG/WN
http://220.129.1.1
Henrik Nordstrom disse na ultima mensagem:
> On fre, 2007-08-31 at 19:16 -0300, Michel Santos wrote:
>
>> well, I guess in 2.6 is something wrong at this special point, unless
>> some
>> secret work fixed it (I have not checked > 14S), if you remember this is
>> not working with any 2.6 when comin
On fre, 2007-08-31 at 15:26 +0200, Nolte, Markus wrote:
> Hi !
>
> I'm trying to manage a flexible request_body_max_size based on the
> destination.
> I'm using SLES-10 (64 Bit) with squid 2.5.STABLE12. After reading some
> postings here, this should work, but it doesn't.
I think it works.. see b
On lör, 2007-09-01 at 01:00 +1200, Amos Jeffries wrote:
> A GOOD dtsdom_regexp would naturally fit in between dstdomain and dst.
> But squid apparently does not have a good regexp (I have not looked at
> it myself yet, just heard the screams of admin who tried it large-scale).
The problem with
On fre, 2007-08-31 at 19:16 -0300, Michel Santos wrote:
> well, I guess in 2.6 is something wrong at this special point, unless some
> secret work fixed it (I have not checked > 14S), if you remember this is
> not working with any 2.6 when coming from a local address, but with 2.5 it
> is
>
> sho
Henrik Nordstrom disse na ultima mensagem:
> On fre, 2007-08-31 at 09:24 -0300, Michel Santos wrote:
>
>> > 192.168.1.0/24 is the same as 192.168.1.0-192.168.1.255
>> >
>>
>> really ;)
>>
>> a range indicator is allowed?
>
> Yes.
I was asking about the dash '-'
>
> The full specification is
>
>
jeff donovan disse na ultima mensagem:
> greetings
>
> i am using squidguard for content filtering.
>
> How can i block this type of script?
>
> http://www.softworldpro.com/demos/proxy/
>
> it's easy to block the url. but when the script is executed there is
> nothing in the url that will let me k
Hello,
I have an existing firewall and would like to use squid to do url
filtering and blocking. What is the best setup for this 1or 2 nic cards
and if to setup squid as a transparent proxy or a proxy. What is your
opinions to those who are already using it under my present setup.
I have 4 sites
On fre, 2007-08-31 at 14:37 -0400, alexus wrote:
> so, if i understand correctly i can do something like this...
>
> url_rewrite_access rw
> url_rewrite_program /usr/local/squid/bin/_myrewriteprogram.sh
> acl rw dstdomain www.ebay.com
>
> like this?
almost...
acl rw dstdomain www.ebay.com
url_r
On fre, 2007-08-31 at 14:21 -0300, Diego Woitasen wrote:
> ey, It's working with connection pinning of Squid-2.6 :)
Yes, it should. But it's not making pretty things to the internals of
Squid.. and nor is the commonly deployed browser behaving in any sane
manner..
Regards
Henrik
signature.asc
On fre, 2007-08-31 at 09:24 -0300, Michel Santos wrote:
> > 192.168.1.0/24 is the same as 192.168.1.0-192.168.1.255
> >
>
> really ;)
>
> a range indicator is allowed?
Yes.
The full specification is
IPA-IPB/MASK
where IPB defaults to IPA if not specified, and /MASK defaults to /32 if
not spe
and one more thing...
let's say according to my acl "rw" i sent url for example www.ebay.com
to url_rewrite_program and it rewrote it, fed it back to squid and
squid executed that url, which after doing whatever it needs to do it
sends user back www.ebay.com so he can resume he's activity on ebay,
so, if i understand correctly i can do something like this...
url_rewrite_access rw
url_rewrite_program /usr/local/squid/bin/_myrewriteprogram.sh
acl rw dstdomain www.ebay.com
like this?
On 8/31/07, Henrik Nordstrom <[EMAIL PROTECTED]> wrote:
> On tor, 2007-08-30 at 19:14 -0400, alexus wrote:
>
greetings
i am using squidguard for content filtering.
How can i block this type of script?
http://www.softworldpro.com/demos/proxy/
it's easy to block the url. but when the script is executed there is
nothing in the url that will let me key in on.
here is the regex I am using:
#Block Cgip
I'm trying to come up with a way to automatically convert MS Word documents
to PDF files for display in a web browser.
* Some users MUST access documents on external sites; these docs are in MS
Word format. :-p
* We have no control/influence over the external sites.
* User platform is a Linux ba
Hello,
Can Squid block MSN, Yahoo, instant message programs?
Thanks
I swear! I can't understand!
But this morning with all ACL's commented out, again, all works
very very smoothly.
Like a miracle!! :-)
However, if ACL's is turned on after 10 minutes, running squid, speed goes down.
I have the same rules(acl's and http_access) in both servers. There
is only o
Hello,
I'm trying to install squid on xpsp2 and am having difficulty with the
installation procedure. I've downloaded the latest 2.6.14 binaries and
extracted them to c:\squid. I am having difficulties with the installation
doc and am wondering if there's a command list i could utilize?
I
Hi !
I'm trying to manage a flexible request_body_max_size based on the
destination.
I'm using SLES-10 (64 Bit) with squid 2.5.STABLE12. After reading some
postings here, this should work, but it doesn't. Here is the external
script and the squid.conf configuration. Thanks for help.
/etc/squid/r
> On 30-Aug-07 My Secret NSA Wiretap Overheard Lutieri G. Saying :
> > /dev/da0s1a on / (ufs, local)
> > devfs on /dev (devfs, local)
> > /dev/da0s1e on /tmp (ufs, local, soft-updates)
> > /dev/da0s1f on /usr (ufs, local, soft-updates)
> > /dev/da0s1d on /var (ufs, local, soft-updates)
> > /dev/da
Daniel Zilli wrote:
Hi,
A doubt here. Which kind of acl should I choose to process a blacklist (around
1000 entries) ?
I know the different between srcdomain, dstdomain, srcdom_regex and
dstdom_regex, but which one is faster ?
Any with _regex is currently SLOW. I prefer not to use it for a
Javed wrote:
Hello,
i get the following error after i tried to ./configure
squid-2.5.STABLE14-20060721 (after unzipping it).
loading cache ./config.cache
First that is an obsolete version of squid.
Visit: http://www.squid-cache.org/Versions/ and grab the 2.6 release at
least.
checking
Henrik Nordstrom disse na ultima mensagem:
> On fre, 2007-08-31 at 05:17 -0300, Michel Santos wrote:
>
>> looking this over means that when the IP address of any 'acl peer src
>> $1'
>> match the IP range of 'acl all src ip/mask' then I do not need to
>> specify
>> an additional 'http_access deny
Hello,
i get the following error after i tried to ./configure
squid-2.5.STABLE14-20060721 (after unzipping it).
loading cache ./config.cache
checking for a BSD compatible install...
/usr/bin/install -c
checking whether build environment is sane... yes
checking for mawk... no
chec
Hi,
A doubt here. Which kind of acl should I choose to process a blacklist (around
1000 entries) ?
I know the different between srcdomain, dstdomain, srcdom_regex and
dstdom_regex, but which one is faster ?
Thanks,
Daniel
On fre, 2007-08-31 at 05:17 -0300, Michel Santos wrote:
> looking this over means that when the IP address of any 'acl peer src $1'
> match the IP range of 'acl all src ip/mask' then I do not need to specify
> an additional 'http_access deny peer we_acl' if 'http_access deny all
> we_acl' is defin
Hello,
thanks for the replies, I am using squidguard as a redirector, and
when I squidguard from the command line it died with 'filesize
exceeded', turned out squidguard's log had grown to 2.1GB and this was
killing squid.
Thanks,
Gavin
On 8/30/07, Amos Jeffries <[EMAIL PROTECTED]> wrote:
> > H
Henrik Nordstrom disse na ultima mensagem:
> On tor, 2007-08-30 at 08:27 -0300, Michel Santos wrote:
>
>> *THIS* is the thing here: that any acl configured on the frontend cache
>> is
>> not beeing applied to any request from the peer
>
> Then check your http_access rules. You have something else
On tor, 2007-08-30 at 19:14 -0400, alexus wrote:
> can i somehow (maybe use urlgroup) to identify some urls/domains that
> i want to feed into url_rewrite_program and everything else leave it
> alone?
url_rewrite_access?
Regards
Henrik
signature.asc
Description: This is a digitally signed messa
30 matches
Mail list logo