Hi Rihad,
rihad wrote:
Squid using almost twice as much memory as was accounted for (according
to top(1)):
4243 squid 29 200 1325M 1317M kserel 42:39 0.00% squid
Since last time, after you reduced your cache_mem from 1000 MB to 300
MB, your Squid memory usage has gone down
Hi List,
I'm new to this list. i have a question about transparent
proxy. if i apply an ACL for downloading mp3 and mpeg. but it's not
working, user's are able to download mp3 or mpeg...
here is my config..squid.conf file.
port 8080
acl blocksites url_regex
Hi Jason,
Jason Zammit wrote:
Hi,
Squid suddenly stopped working this afternoon. I am very new to squid and
linux. I have gone through the cache.log and came across this section, which
would have been around the time I started getting calls. Any help or advice is
appreciated
CACHE.LOG
Hello, I am a first time user of Squid.
I think its great and I want to get a certificate or something that supports
that I can fully operate Squid.
But thats now where my question is about.
My question is about my config.
My /etc/squid/squid.conf file Is written by myself. And I think I made a
Hello,
I wonder is there a way to log all DNS requests that go out of our network
with Squid.
Since I noticed that we had a Trojan Horse on our Company Network.
And well it didnt send it self the data out.
It did send DNS Querys to there DNS Server..
And a Firewall doesnt detect that.
Is there a
You need to apply your acls with some deny statements.
http_reply_access deny blockfiles for your mp3's, etc.
To block websites I use dstdomain instead of url_regex.
So my squid.conf contains:
acl blocksites dstdomain /etc/squid/squid-block.acl
http_access deny blocksites
One other
Hi all,
If Im correct in my research FTP clients will only work through Squid if
they have a HTTP mode available. Ive tested with CuteFTP which works fine
through Squid but does anybody know of any free FTP clients that would have
this mode?
Many thanks,
Hi Michael,
Michael Pye wrote:
On Tue, Oct 30, 2007 at 01:38:31PM +0545, Tek Bahadur Limbu wrote:
I wanted to know if somebody here is running a Squid cache on a Solaris
box (i386)?
Basically, I want to know if somebody here on this list is using a ZFS
file system for a proxy cache and what
Hello,
I wonder is there a way to log all DNS requests that go out of our
network
with Squid.
Since I noticed that we had a Trojan Horse on our Company Network.
And well it didnt send it self the data out.
It did send DNS Querys to there DNS Server..
And a Firewall doesnt detect that.
Is
Thomas Raef wrote:
You need to apply your acls with some deny statements.
http_reply_access deny blockfiles for your mp3's, etc.
To block websites I use dstdomain instead of url_regex.
So my squid.conf contains:
acl blocksites dstdomain /etc/squid/squid-block.acl
http_access deny
Thomas Raef wrote:
You need to apply your acls with some deny statements.
http_reply_access deny blockfiles for your mp3's, etc.
To block websites I use dstdomain instead of url_regex.
So my squid.conf contains:
acl blocksites dstdomain /etc/squid/squid-block.acl
http_access deny blocksites
Tek Bahadur Limbu wrote:
Hi Jason,
Jason Zammit wrote:
Hi,
Squid suddenly stopped working this afternoon. I am very new to squid
and linux. I have gone through the cache.log and came across this
section, which would have been around the time I started getting
calls. Any help or advice
Thomas Raef wrote:
You need to apply your acls with some deny statements.
http_reply_access deny blockfiles for your mp3's, etc.
To block websites I use dstdomain instead of url_regex.
So my squid.conf contains:
acl blocksites dstdomain /etc/squid/squid-block.acl
http_access
Thomas Raef wrote:
You need to apply your acls with some deny statements.
http_reply_access deny blockfiles for your mp3's, etc.
To block websites I use dstdomain instead of url_regex.
So my squid.conf contains:
acl blocksites dstdomain /etc/squid/squid-block.acl
http_access
Tarak Ranjan wrote:
Thomas Raef wrote:
You need to apply your acls with some deny statements.
http_reply_access deny blockfiles for your mp3's, etc.
To block websites I use dstdomain instead of url_regex.
So my squid.conf contains:
acl blocksites dstdomain /etc/squid/squid-block.acl
Mauricio Silveira wrote:
Hi all
I'm a real newbie on using LDAP... I'm using here Slackware 12 without pam.
I have just compiled squid 2.6.STABLE16, I'm on a fight with the ldap
auth module...
Look at this:
The former:
/usr/libexec/squid/squid_ldap_auth -b dc=LINUXDEV,dc=INTRANET -D
When you install a name server on the box where Squid is and
change /etc/resolv.conf you can see all queries of Squid
(provided that no other software runs on the box).
-Marcus
Thomas Raef wrote:
Hello,
I wonder is there a way to log all DNS requests that go out of our
network
with Squid.
On Thu, Nov 01, 2007 at 03:06:38AM -0700, Robin-Vossen wrote:
My /etc/squid/squid.conf file Is written by myself. And I think I
made a mistake somewere since when I start Squid it crashes.
Did you check the squid logs to see what the problem was? The cache
log is the one you'll be looking for.
ok. it's seems to me that it's working. i have another issue for this
. while manually in my browser if i select proxy then the acl's are
working fine . when i select Auto detect that time it's not working,
in the sense acl's are hot hitting. although i've disable allow_direct
okay,
Ok, damn.. :(
I just have to find something else to do that then..
Thanks for telling me :(
traef06 wrote:
Hello,
I wonder is there a way to log all DNS requests that go out of our
network
with Squid.
Since I noticed that we had a Trojan Horse on our Company Network.
And well it didnt
Machine running Squid 2.6 with kqueue+aufs on FreeBSD 6.2 reboots
spontaneously every 2-3 days. We've practically ruled out hardware
problems by replacing the box and having the same problems.
Squid port build options: everything off, except aufs and kqueue.
Some squid.conf lines:
cache_mem
[Tom replied with:]
More information about your configuration is needed.
Are you using a transparent proxy? If not, then your users could easily
add their own proxy settings and bypass squid. If you are using squid in
transparent mode, then your firewall rules redirecting port 80 traffic
to
Hi Robin,
Robin-Vossen wrote:
Hello,
I wonder is there a way to log all DNS requests that go out of our network
with Squid.
Since I noticed that we had a Trojan Horse on our Company Network.
And well it didnt send it self the data out.
It did send DNS Querys to there DNS Server..
And a Firewall
I will be Out of the Office
Start Date: 31/10/2007.
End Date: 05/11/2007.
I am currently out of the office, I will respond to your message when I
return. If the matter is urgent please contact a member of the LPIS
Technical Services Team.
rihad, on 11/01/2007 04:38 PM [GMT+500], wrote :
Machine running Squid 2.6 with kqueue+aufs on FreeBSD 6.2 reboots
spontaneously every 2-3 days. We've practically ruled out hardware
problems by replacing the box and having the same problems.
So you thinks its squid causing these reboots?
I am using elements of Shalla's blacklists to block content. However,
they ship in two files, domains and URLs, the former being IP addresses
and the later URLs. Since our squid proxy is running on Windows I would
need to experiment with cygwin to get SquidGuard running, and that isn't
something I
On Thu, Nov 01, 2007, rihad wrote:
Machine running Squid 2.6 with kqueue+aufs on FreeBSD 6.2 reboots
spontaneously every 2-3 days. We've practically ruled out hardware
problems by replacing the box and having the same problems.
Squid port build options: everything off, except aufs and
My bad, in fact from further analysis it seems that the domain files are
the mysite.com listings and URLs are things like
mysite.com/something/?somethingelse.htm. Does the later have any
relevance or use within Squid?
Paul Cocker
IT Systems Administrator
-Original Message-
From: Paul
Hi,
Have you put the correct http_port directive in your squid.conf?
It should be something like
http_port 127.0.0.1:3178
cheers!
On 10/31/07, ying lcs [EMAIL PROTECTED] wrote:
Hi,
I am able to compile and get squid running on my ubuntu machine.
However, when I see my proxy setting in my
Well I have no idea what the name of the Trojan horse was.
But, our DNS server was down.
And I still had DNS querys over the network.
I thought that was strange. But I thought.. Oh Well
So, some time later on some PCs started to show Trojan behavior.
(Minesweeper autostarting etc)
I thought, oh
Thanks alot Ill look into that asap.
And well the Typo error are since I am building Squid on a Gentoo box
without a Graphical Shell or a Webbrowser ;)
Thanks again Ill look into that asap.
Michael Alger-3 wrote:
On Thu, Nov 01, 2007 at 03:06:38AM -0700, Robin-Vossen wrote:
My
Can anyone recomend a good professional support organization for squid.
ie. providing 24*7 phone support.
The company I work for requires a support contract for all software.
--
Hi,
As we know, Verisign is switching to 3 tier ssl, It requires
Intermediate cert now.
I am using Squid 2.6 stable 12. and also was looking at this thread
http://www.squid-cache.org/mail-archive/squid-users/200410/1017.html
But I dont know how to specify this. any help??
Thanks
srini
My bad, in fact from further analysis it seems that the domain files
are
the mysite.com listings and URLs are things like
mysite.com/something/?somethingelse.htm. Does the later have any
relevance or use within Squid?
Paul Cocker
IT Systems Administrator
[Tom replied with:]
I don't
On Nov 1, 2007, at 10:23 AM, Paul Cocker wrote:
My bad, in fact from further analysis it seems that the domain
files are
the mysite.com listings and URLs are things like
mysite.com/something/?somethingelse.htm. Does the later have any
relevance or use within Squid?
Paul Cocker
IT Systems
On Thu, Nov 01, 2007 at 09:56:08AM -0700, Srinivas B wrote:
As we know, Verisign is switching to 3 tier ssl, It requires
Intermediate cert now.
I asked this very same question only yesterday.
See http://marc.info/?l=squid-usersm=119383366330808w=2
You need to have your regular ssl certifcate
Just squid, it's running on a Windows box and I don't have the time
currently to figure out how to run cygwin and squidguard together, so
I'm looking simply to hook the most useful lists direct into squid and
see how much it harms performance.
Paul Cocker
IT Systems Administrator
-Original
During a review on squid, we found the following setuid-binary set to
run as root
E: squid setuid-binary /usr/lib64/squid/ncsa_auth root 04750
E: squid setuid-binary /usr/lib64/squid/pam_auth root 04750
Kicking around Google I find that:
ncsa_auth allows Squid to read and authenticate user and
Eric Young wrote:
I am running Squid2.6 stable running on Win2003
I have a stable config running with 120+ WinXP boxes and 130+ users. I have 3
Mac OSX workstations that like the XP workstations are setup with manual proxy
settings. My problem is that Mac users are getting prompt every
Matt Ruzicka wrote:
We're in process of rebuilding a couple web filter boxes on Centos 4.5 running
Squid 2.5.STABLE14 (latest from yum) using squid_radius_auth 1.09 for
authentication with the following config:
auth_param basic program /usr/local/squid/libexec/squid_radius_auth -f
Thanks everyone for the advice. I'm working on installing and testing 2.6
STABLE16. I'll see where we're at then, but I suspect things will be looking
better.
Thanks.
Matt Ruzicka
Sr. Systems Engineer
[EMAIL PROTECTED]
www.cisp.com
www.yocolo.com
419.724.5345 : tel
419.867.6913 : fax
Hello !!
I testing squid on freebsd 6.2 amd64+SMP, server is 2 procs dual-core
opteron 4gb ram ...
after some time running .. squid proccess refusing connections, if i try to
kill them, proccess don=B4t stop.. no errors is show.. without core dumps=
...
# ps auwx | grep squid
USERPID
rihad wrote:
Squid using almost twice as much memory as was accounted for
(according to top(1)):
4243 squid 29 200 1325M 1317M kserel 42:39 0.00% squid
Is this expected?
From
http://wiki.squid-cache.org/SquidFaq/SquidMemory#head-0b5e485f61e7ea4e580c60f45177f0bbcf7d7b80
On October 31, 2007, Dmitry S. Makovey wrote:
#http_reply_access allow all
acl plain_content rep_mime_type -i text/plain
# http_reply_access allow GET_method xml_content from_clients
redirect_program /usr/local/bin/myscript
redirector_access plain_content
http_reply_access allow
When you install a name server on the box where Squid is and
change /etc/resolv.conf you can see all queries of Squid
(provided that no other software runs on the box).
Doesn't have to be on the same box as squid either.
It's still the NS logging not squid.
Amos
-Marcus
Thomas Raef
Thanks alot Ill look into that asap.
And well the Typo error are since I am building Squid on a Gentoo box
without a Graphical Shell or a Webbrowser ;)
Thanks again Ill look into that asap.
Michael Alger-3 wrote:
On Thu, Nov 01, 2007 at 03:06:38AM -0700, Robin-Vossen wrote:
My
Vadim Pushkin wrote:
Thanks Chris;
Based on your excellent example:
acl DenyIP_CONNECT url_regex ^[a-z]{1-5}://[0-9]
Would I still be required to write IP addresses with a netmask? Or
can I mix them, which is my preference.
If I remember correctly, the dst acl prefers a netmask these
Just squid, it's running on a Windows box and I don't have the time
currently to figure out how to run cygwin and squidguard together, so
I'm looking simply to hook the most useful lists direct into squid and
see how much it harms performance.
Paul Cocker
IT Systems Administrator
Paul Cocker wrote:
My bad, in fact from further analysis it seems that the domain files are
the mysite.com listings and URLs are things like
mysite.com/something/?somethingelse.htm. Does the later have any
relevance or use within Squid?
Paul Cocker
IT Systems Administrator
The first would
Can anyone recomend a good professional support organization for squid.
ie. providing 24*7 phone support.
The company I work for requires a support contract for all software.
http://www.squid-cache.org/Support/services.dyn
Amos
During a review on squid, we found the following setuid-binary set to
run as root
E: squid setuid-binary /usr/lib64/squid/ncsa_auth root 04750
E: squid setuid-binary /usr/lib64/squid/pam_auth root 04750
Kicking around Google I find that:
ncsa_auth allows Squid to read and authenticate user
Hello !!
I testing squid on freebsd 6.2 amd64+SMP, server is 2 procs dual-core
opteron 4gb ram ...
after some time running .. squid proccess refusing connections, if i try
to
kill them, proccess don=B4t stop.. no errors is show.. without core
dumps=
...
# ps auwx | grep squid
USER
Vadim Pushkin wrote:
Thanks Chris;
Based on your excellent example:
acl DenyIP_CONNECT url_regex ^[a-z]{1-5}://[0-9]
Would I still be required to write IP addresses with a netmask? Or
can I mix them, which is my preference.
If I remember correctly, the dst acl prefers a netmask these
I've updated squid with the resume fix, and WU still not working.
---
squid3 (3.0.RC1-2) unstable; urgency=low
* debian/patches/08-resume-http.dpatch
- Added upstream patch fixing failure to resume downloads
---
Any idea?
-Original Message-
From: Amos Jeffries [mailto:[EMAIL
Hi,
After I added the following line in the squid.conf, it runs well.
header_access Via deny all
On 10/25/07, Cheng Bruce [EMAIL PROTECTED] wrote:
Dear all,
Recently I meet the strange problem, Squid can't access some web
sites. For example, http://www.hsa.gov.sg/
I'm using pfSense
I've updated squid with the resume fix, and WU still not working.
---
squid3 (3.0.RC1-2) unstable; urgency=low
* debian/patches/08-resume-http.dpatch
- Added upstream patch fixing failure to resume downloads
---
Any idea?
Now its probably time to do a proper debug.
You could
Hi,
After I added the following line in the squid.conf, it runs well.
header_access Via deny all
Curiouser and Curiouser. That means the website is attempting to do some
form of user tracking and proxy detection.
Probably is that weather bit then, trying to locate the local weather for
Thank you!
On 10/31/07, Adrian Chadd [EMAIL PROTECTED] wrote:
On Wed, Oct 31, 2007, Amos Jeffries wrote:
Do squid-2.6(stable13) surport multi router with wccpv2 ? To one
router ,i test it successfully,now i don't know if surport multi
router.
Yes. Just add multiple wccp2_router
Chris Robertson wrote:
rihad wrote:
Squid using almost twice as much memory as was accounted for
(according to top(1)):
4243 squid 29 200 1325M 1317M kserel 42:39 0.00% squid
Is this expected?
From
59 matches
Mail list logo