Hi All,
When people are going through the squid proxy they are getting a blank web =
page for blocked sites. We are blocking sites via a service installed on ou= r
broadband router, the blocked pages come up fine when not going through s=
quid. As soon as we go through squid these pages are
--- On Sun, 11/14/10, Amos Jeffries squ...@treenet.co.nz wrote:
From: Amos Jeffries squ...@treenet.co.nz
Subject: Re: [squid-users] Problems with hotmail and facebook - rev
To: squid-users@squid-cache.org
Date: Sunday, November 14, 2010, 10:19 PM
On Sun, 14 Nov 2010 18:38:06 -0800
(PST),
--- On Sun, 11/14/10, Amos Jeffries squ...@treenet.co.nz wrote:
From: Amos Jeffries squ...@treenet.co.nz
Subject: Re: [squid-users] Problems with hotmail and facebook - rev
To: squid-users@squid-cache.org
Date: Sunday, November 14, 2010, 10:19 PM
On Sun, 14 Nov 2010 18:38:06 -0800
(PST),
On 15/11/10 23:18, Scott Cameron wrote:
Hi All,
When people are going through the squid proxy they are getting a
blank web = page for blocked sites. We are blocking sites via a
service installed on ou= r broadband router, the blocked pages come
up fine when not going through s= quid. As soon as
On 15/11/10 17:53, Rolf Loudon wrote:
hello
I've been trying and failing to match the user agent string for the browser acl
type. I would appreciate any help. I don't know exactly what squid sees as
the user agent but a capture of the traffic shows the user agent header and I'm
basing it
On 15/11/10 20:05, RM wrote:
Hello all,
I am running Squid Cache: Version 2.6.STABLE21 on CentOS 5.5 and have
been using delay pools to limit clients' bandwidth usage. Here is the
delay pool section and related ACL of the squid.conf file. I have
included the entire squid.conf at the end of the
--- On Sun, 11/14/10, Amos Jeffries squ...@treenet.co.nz wrote:
From: Amos Jeffries squ...@treenet.co.nz
Subject: Re: [squid-users] Problems with hotmail and facebook - rev
To: squid-users@squid-cache.org
Date: Sunday, November 14, 2010, 10:19 PM
On Sun, 14 Nov 2010 18:38:06 -0800
(PST),
On 16/11/10 02:03, Landy Landy wrote:
--- On Sun, 11/14/10, Amos Jeffries wrote:
From: Amos Jeffries
snip
Landy Landy wrote:
Error de lectura
El sistema ha devuelto el siguiente mensaje:
(104) Connection reset by
peer
Ha ocurrido algún problema mientras se leían datos
de la red.
When I go out via the router directly (avoiding squid) I get the correct
blocked page. When I introduce Squid it comes up blank. It is obviously having
a hard time bringing the correct page back but I don't know how to find out
what the issue is.
-Original Message-
From: Amos Jeffries
--- On Mon, 11/15/10, Landy Landy landysacco...@yahoo.com wrote:
From: Landy Landy landysacco...@yahoo.com
Subject: Re: [squid-users] Problems with hotmail and facebook - rev
To: squid-users@squid-cache.org, Amos Jeffries squ...@treenet.co.nz
Date: Monday, November 15, 2010, 8:20 AM
---
On 11/13/2010 at 12:20 AM, in message 4cde2001.3020...@treenet.co.nz, Amos
Jeffries squ...@treenet.co.nz wrote:
snip!
This seems a bit ambiguous for people who are new to squid (like me).
I have tried pasting the block of code in various places in my config
file, and it seems no matter
Hello guys,
I have set up a squid as SSL reverse proxy, it works very fine.
I have checked SSL security against Qualys and they report me that the
server is vulnerable to MITM attacks because it supports insecured
renegotiation
There is my SSL relating configuration:
https_port
Should I encounter long delays when accessing a HTTP site via IP (not
FQDN/friendly name/etc) that does not have a valid reverse DNS record?
I am encountering an issue where it takes 25-30 seconds to access a site
that does not have a valid reverse DNS record. Using Squid 2.6/EL5.
Thanks,
Josh
Hello all
I have the following setup:
- Windows client with Internet Explorer and configured squid proxy for
HTTP *and* HTTPS.
- Squid 3.1.8 as proxy
- Squid access rule:
acl facebook url_regex facebook.com
http_access deny facebook
If the client is trying to connect to
This is a Internet Explorer setting under Internet Options - Advanced
- Browsing called Show Friendly HTTP Error messages, disable this to
get the real error messages.
ALSO, if you are trying to simply block facebook, create a dstdomain
ACL instead, and don't forget to include fbcdn.net.
-Original Message-
From: Sébastien WENSKE [mailto:sebast...@wenske.fr]
Sent: Monday, November 15, 2010 8:44 AM
To: squid-users@squid-cache.org
Subject: [squid-users] [Squid 3.1.9] SSL Reverse PROXY - Insecure
Renegotiation Supported
Hello guys,
I have set up a squid as SSL
Hello
This is a Internet Explorer setting under Internet Options
- Advanced
- Browsing called Show Friendly HTTP Error messages,
disable this to
get the real error messages.
This is not working for me. If I do it under IE 8, I still get the same
message (even with browser restart):
--- On Sun, 11/14/10, Amos Jeffries squ...@treenet.co.nz wrote:
From: Amos Jeffries squ...@treenet.co.nz
Subject: Re: [squid-users] Problems with hotmail and facebook - rev
To: squid-users@squid-cache.org
Date: Sunday, November 14, 2010, 10:19 PM
On Sun, 14 Nov 2010 18:38:06 -0800
(PST),
Hi List,
Just a quick question; I've re-read the following a number of times and think
I've confused myself:
The startup= and idle= options permit some skew in the exact amount
run. A minimum of startup=N will begin during startup and reconfigure
and Squid will start
Thanks Dean,
I have tried to compile with openssl 10.0.0a, but I get the same result... even
with sslproxy_ directives.
Can you check your server on https://www.ssllabs.com/ssldb/index.html just to
see
In my case:
browser --- HTTPS reverse proxy (squid 3.1.9) HTTP - OWA
-Original Message-
From: Sébastien WENSKE [mailto:sebast...@wenske.fr]
Sent: Monday, November 15, 2010 11:29 AM
To: squid-users@squid-cache.org
Subject: [squid-users] RE: RE : [squid-users] [Squid 3.1.9] SSL Reverse PROXY
- Insecure Renegotiation Supported
Thanks Dean,
I have
Hi Amos,
It was my understanding that my quick_abort settings would do the
exact opposite. The manual states the following:
If you do not want any retrieval to continue after the client has
aborted, set both 'quick_abort_min' and 'quick_abort_max' to '0 KB'.
I did however play around with both
Hey,
With squid3, how i have to enable squidGuard ?
Redirect_program /usr/bin/squidGuard -c /etc/squid/squidGuard.conf
Or
url_rewrite_program /usr/bin/squidGuard -c /etc/squid/squidGuard.conf
the Squid Page refer from redirect_program to url_rewrite_programe, but with
both it does not work for
I encounter the same problem. HTTP caching seems to be working (as I
sometimes get TCP_HIT, but not on all websites) but caching for downloaded
files doesn't work at all.
For example, on my client PC :
wget
Thanks for your support Dean, but I'm definitively a n00b :)
I had compile many times (without error) with some ssl paths, but no result I
got the same result on the scan...
I compiled openssl with no particular option (no make install)
./configure --localstatedir=/var --prefix=/usr
On Mon, 15 Nov 2010 06:25:10 -0800 (PST), Landy Landy
landysacco...@yahoo.com wrote:
--- On Mon, 11/15/10, Landy Landy landysacco...@yahoo.com wrote:
snip
Just discovered another site I can't log on to. Is my bank's website.
Looks like theres a problem with https and squid I can't discover.
On Mon, 15 Nov 2010 09:37:11 -0500, Jim Moseby
jmos...@elasticfabrics.com wrote:
On 11/13/2010 at 12:20 AM, in message
4cde2001.3020...@treenet.co.nz, Amos
Jeffries squ...@treenet.co.nz wrote:
snip!
This seems a bit ambiguous for people who are new to squid (like me).
I have tried pasting
On Mon, 15 Nov 2010 17:14:49 +0100, Vonlanthen, Elmar
elmar.vonlant...@united-security-providers.ch wrote:
Hello
This is a Internet Explorer setting under Internet Options
- Advanced
- Browsing called Show Friendly HTTP Error messages,
disable this to
get the real error messages.
This
On Mon, 15 Nov 2010 16:54:08 +, Nick Cairncross
nick.cairncr...@condenast.co.uk wrote:
Hi List,
Just a quick question; I've re-read the following a number of times and
think I've confused myself:
The startup= and idle= options permit some skew in the exact
amount
run.
On Mon, 15 Nov 2010 11:29:31 -0800, RM bearm...@gmail.com wrote:
Hi Amos,
It was my understanding that my quick_abort settings would do the
exact opposite. The manual states the following:
If you do not want any retrieval to continue after the client has
aborted, set both
On Mon, 15 Nov 2010 09:18:18 -0600, Baird, Josh jba...@follett.com
wrote:
Should I encounter long delays when accessing a HTTP site via IP (not
FQDN/friendly name/etc) that does not have a valid reverse DNS record?
I am encountering an issue where it takes 25-30 seconds to access a site
that
On Mon, 15 Nov 2010 21:33:40 +, Sébastien WENSKE sebast...@wenske.fr
wrote:
Thanks for your support Dean, but I'm definitively a n00b :)
I had compile many times (without error) with some ssl paths, but no
result I got the same result on the scan...
I compiled openssl with no
Hi Amos,
Glad to hear you, I have already try and retry this one, but no changes... this
is freaky and I'm tired :)
I will continue tomorrow, I think I need to find a guide to compile squid with
non-system ssl libraries/headers.
Otherwise, is there a way to know with wich openssl squid is
-Message d'origine-
De : Amos Jeffries
On Mon, 15 Nov 2010 21:33:40 +, Sébastien WENSKE wrote:
Thanks for your support Dean, but I'm definitively a n00b :) I had
compile many times (without error) with some ssl paths, but no result
I got the same result on the scan...
On Mon, 15 Nov 2010 20:54:23 +0100, Marco Schuth ma...@it-schuth.net
wrote:
Hey,
With squid3, how i have to enable squidGuard ?
Redirect_program /usr/bin/squidGuard -c /etc/squid/squidGuard.conf
Or
url_rewrite_program /usr/bin/squidGuard -c /etc/squid/squidGuard.conf
the Squid Page
Squid 3.1.9
I am trying to create an ACL in squid that allows Torrent traffic through squid
(don't ask...)
After fiddeling with the ACL's I got it working, but not the way I want it to.
I can only can get it to work globally, not for individual IP's or users.
What works:
acl SSL_ports port 443
On 16/11/10 15:00, Hein Konijn wrote:
Squid 3.1.9
I am trying to create an ACL in squid that allows Torrent traffic through squid
(don't ask...)
Why not?
After fiddeling with the ACL's I got it working, but not the way I want it to.
I can only can get it to work globally, not for
Hallo, Marco,
Du meintest am 15.11.10:
With squid3, how i have to enable squidGuard ?
Which distribution? squid3 sounds like a very special distribution.
Redirect_program /usr/bin/squidGuard -c /etc/squid/squidGuard.conf
Or
url_rewrite_program /usr/bin/squidGuard -c
38 matches
Mail list logo