Amos Jeffries escreveu:
Shekhar Gupta wrote:
I was looking whether it would be possible or not . On a single server
if i install squid at two diff location however i would like the
cache_dir to be common between the 2 squid is this possible to it
will have problem .
Not possible with
Amos Jeffries escreveu:
cache_effective_group squid
whack!
Please don't use this.
why not i'm curious why not use that :)
--
Atenciosamente / Sincerily,
Leonardo Rodrigues
Solutti Tecnologia
http://www.solutti.com.br
Minha armadilha de
Amos Jeffries escreveu:
The big question is WHY BOTHER?
Squid will cache whatever it can as it passes through, things get
cached as users request them. This saves you on bandwidth and disk
space. While giving followup clients the speed they would like.
i completly agree with you. I
agent59624285 escreveu:
Hi
I'm trying to create a delay pool such that a specific group of IP's which
attempt to access specific URLS get their bandwidth capped.
So far ive manged to do this globally using:
acl slow_domains dstdomain .facebook.com .bebo.com
delay_pools 1
delay_class 1 1
lorenor escreveu:
Hello,
I'm searching for a method to cache websites automatically with squid.
The goal is to give squid a list of URLs and the proxy will cache the
sites.
I know only one way to cache a site. A client have to make a request.
But is there another way without client interaction?
Adrian Chadd escreveu:
Hi all,
It's been a tough decision, but I'm resigning from any further active
role in the Squid core group and cutting back on contributing towards
Squid development.
I'd like to wish the rest of the active developers all the best in the
future, and thank everyone here
just as a hint .. i'm tired of seeing Skype and Google Talk
spewing bad things to squid. At least in my cases, i have never seen
squid crashing because of that. The only bad thing is that cache.log
gets full of binary trash ...
Wennie V. Lagmay escreveu:
Thank you very
i'm actually running squid (2.7 stable4) with squid_ldap_auth for
authenticating users in my MS Active Directory tree. I'm running:
auth_param basic program /usr/bin/squid_ldap_auth -R -b
dc=XXX,dc=X -D cn=X,ou=Internet,dc=XX,dc=XXX
-w XX -f sAMAccountName=%s -h
i'm actually running squid (2.7 stable4) with squid_ldap_auth for
authenticating users in my MS Active Directory tree. I'm running:
auth_param basic program /usr/bin/squid_ldap_auth -R -b
dc=XXX,dc=X -D cn=X,ou=Internet,dc=XX,dc=XXX
-w XX -f sAMAccountName=%s -h
usually P2P does not uses squid. Anyway, several P2P protocols can be
encapsulated in HTTP requests, thus allowing them to use squid and
successfully work through HTTP proxy.
Those HTTP-encapsulated P2P requests usually can be identified by:
1) CONNECT method
2) uses IP addresses instead of
░▒▓ ɹɐzǝupɐɥʞ ɐzɹıɯ ▓▒░ escreveu:
can you give me sample ?
im n00b :(
sure ... lots of messages regarding this subject here:
http://marc.info/?l=squid-usersw=2r=1s=p2p+connectq=b
--
Atenciosamente / Sincerily,
Leonardo Rodrigues
Solutti Tecnologia
░▒▓ ɹɐzǝupɐɥʞ ɐzɹıɯ ▓▒░ escreveu:
can you re post ?
i have search on my inbox :( i dont find it :(
newbie tip: learn how to use mailing lists archives when looking for
older messages !!!
http://www.squid-cache.org/mail-archive/squid-users/
http://marc.info/?l=squid-usersr=1w=2
Jakob Curdes escreveu:
- When we change a password on the Active Directory,
squid don't see the change before a lot of hours ...
That is an AD feature. If you use AD groups, you can take somebody
out of the group and AD will happily repsond that the user is a group
member for several
squid is a http/ftp/gopher proxy. It does not support mail protocols
used by Thunderbird, which are the standards SMTP, POP3 and IMAP4.
squid has nothing to do with thunderbird. There's no need for
special configs because it simply wont work through squid.
julian julian escreveu:
julian julian escreveu:
Because all my traffic to internet is managed by squid. Do you have any
suggestion?
no, it's not. Only http/https/ftp/gopher can be handled by squid.
and it wont help keep sending messages asking about IMAP support ...
squid can't do that. period.
--
[EMAIL PROTECTED] escreveu:
Sorry,my English is so poor.
I 'd like to configure Squid working with NTLM AUTH.
Can the clinet which has already logged in Windows' domain access to the
Internet
transparently? Or Is the client be asked Usename and Password again?
if you by
Adam McCarthy escreveu:
After much fussing, I seem to have a working Squid 2.6 working against
a Samba 3 PDC.
My only question is now, can I say, ok, if you finds my username, give
it complete access.
Then perhaps, if it sees user, bob perhaps, then it says, only give
them
Anton escreveu:
Hello!
was trying for a few hours to have a certain site
(http://www.nix.ru) to be not cacheable - but squid always
gives me an object which is in cache!
My steps:
acl DIRECTNIX url_regex ^http://www.nix.ru/$
no_cache deny DIRECTNIX
always_direct allow DIRECTNIX
Siju George escreveu:
Hi,
I am running squid on an OpenBSD machine which has 3 interfaces.
One for LAN and the other two for 2 internet connections.
I would like to loadbalance the traffic comming from squid through the
two internet connections.
How can I acheive that?
you can
Amos Jeffries escreveu:
Dhyanesh Ramaiya wrote:
Hello,
I am getting the error below in cache.log. The setup which I have is
a PC
connected to a modem. Web browser on the PC is configured to establish a
proxy connection to the modem on port 9877 and an upstream proxy
configured
on the
Hello Guys,
from cachemgr.cgi, General Runtime Information, i have among other
informations:
Memory usage for squid via mallinfo():
Total space in arena:2780 KB
Ordinary blocks: 2437 KB 26 blks
Small blocks:2780 KB 0 blks
Nick Duda escreveu:
Ok, I've done this but how can I verify that the cache is not active. store.log
is showing lots of activity, all GET requests.
disable store.log !!! In almost cases, it's useless
the machine that is running squid is running something else ???
maybe other
John Doe escreveu:
Nice John, thanks very much for that !! Got it compiled and
running, no problem. Anyway, i found interesting that squid is
reporting a high average service time for this do-almost-nothing
external ACL (from cachemgr.cgi, external acl stats):
any hint on that ???
Did
John Doe escreveu:
anyway, i would love to see something similar in C that could be compiled
and run with less memory than perl requires unfortunelly i cant code even a
'hello world' in C !!! But i'll try that . shouldnt be too difficult.
Here's a basic C example:
Amos Jeffries escreveu:
cache_mem 0KB - to prevent it allocating anything for the memory cache.
And the configure options to disable things of course. ie all
authenticator helpers you don't need. all of the file system components
except null etc.
If you need more compile-time code purging
John Doe escreveu:
other questions . when those routerboard boots, the date is
December 31 1969. It will then get clock sincronized with ntp and go on.
is it possible to have an ACL based on the local date but include
the year on the acl ??? i wanna squid to denied everything
Hello,
I'm successfully running squid on a VERY low end device, a
routerboard RB450. It's a 64Mb flash disk and 32Mb RAM device. Squid is
running, no problem on that. I'm using OpenWRT for that.
I really dont want squid to cache anything, in disk and in memory. I
just want squid
ERR_DNS_FAIL
it's already there in your errors directory
but that wont work if your connections are being transparently
intercepted. On this situation, own client machine tries to resolve DNS
and if it cant, the local browser shows it's default error message. If
browsers are
Hello,
I'm configuring a 2.7 Stable 4 squid for NTLM authentication across
a slow link (VPN over internet). It's working, no problem at all. I've
joined squid box on the AD, winbind is running, wbinfo -t, -g and -u are
OK. Everything is OK, authentication is running fine.
Altough,
Amos Jeffries escreveu:
Leonardo Rodrigues Magalhães wrote:
i dont know if this is expected or even desired but with
squid 3.0 i'm getting some log entries that brings lots of binary
data to the log. This binary stuff makes it impossible, sometimes, to
watch logs with 'tail -f
Saurabh Agarwal escreveu:
I know that Squid supports SNMP but also read that SQUID MIB has not
evolved much over years.
Are there any plans to upgrade the SQUID MIB set in coming releases?
hi how about telling us what you would like to monitor with
SNMP which you currently cant
Steve Snyder escreveu:
On Wednesday 27 August 2008 08:48:36 am Steve Bertrand wrote:
Altrock, Jens wrote:
So there is no significant change in features, only in programming
language, is that right?
IPv6... ;)
There is no IPv6 support in Squid v3.0. It is schedule for
[EMAIL PROTECTED] escreveu:
Would appreciate if the acls are provided with suitable examples for
directly implementing in the squid.conf file.
that's impossible with directly implementing on squid.conf. There's
no such complex limiting feature ready on squid.
altough, it's still
Benton Roberts escreveu:
Dear Squid-masters,
I would like to configure Squid so that it always serves the latest
available version of any given URL, even if the URL is no longer available
at the original server. In this way, Squid's clients would never receive an
error for a given URL, as
Amos Jeffries escreveu:
What Adrian continuously fails to mention, is that he is the only
developer actively working on improving Squid-2. The rest of us major
developers have decided Squid-2 should be superseded by Squid-3 and
are improving Squid-3. Importing features from Squid-2 to
Joe Tiedeman escreveu:
Hi Guys,
Is there any more information that I could provide to help with the
resolution of this issue (bug 2176)?
Bill, did you get a chance to test Squid 3.0 to see if the issue is
still apparent?
it was discussed recently on this mailing list the fact that
i must confess that even after reading several threads about 2.7 x
3.0 versions, i still cant understand why 2.7 has some features that 3.0
dont !
we are used to think that newer versions have all features that
previous versions had, plus bug fixes and plus new features
i
Adrian Chadd escreveu:
Thats because the version numbers are misleading.
Squid-2 and Squid-3 are different paths, you can say. They probably
would benefit from being called different names, but thats a different
story.
Squid-2 has seen continued development and will see continued
development
Hello Guys,
I'm trying to setup squid_session exactly like squid_session.8
manpage, just for testing it. After putting example configuration on
squid.conf, i got the following error during reconfigure:
2008/08/15 14:50:55| Can't use proxy auth because no authentication
schemes are
Евгений escreveu:
ICQ (Miranda) works fine if I disable NTLM-authentication
(http_access allow my_department CONTROLEE - http_access allow my_department).
Miranda breaks all the time as soon as I produce ICQ-traffic (search,
send messages etc).
Miranda-Jabber breaks too.
In Miranda's log
Jorge Bastos escreveu:
Hi people,
Since first 3.0 version i've noticed this:
2008/07/25 21:56:24| WARNING: '0.0.0.0/0.0.0.0' is a subnetwork of
'192.168.1.0/255.255.255.0'
2008/07/25 21:56:24| WARNING: because of this '192.168.1.0/255.255.255.0' is
ignored to keep splay tree searching
Henrik Nordstrom escreveu:
On ons, 2008-07-23 at 14:47 +1200, Amos Jeffries wrote:
For bugzilla this extra info will be helpful:
You earlier located the debug message indicating AuthUser. Is that still
present exactly the same? or has it changed?
We are going to have to track down;
Henrik Nordstrom escreveu:
On ons, 2008-07-23 at 14:47 +1200, Amos Jeffries wrote:
For bugzilla this extra info will be helpful:
You earlier located the debug message indicating AuthUser. Is that still
present exactly the same? or has it changed?
We are going to have to track down;
Amos Jeffries escreveu:
Leonardo Rodrigues Magalhães wrote:
Hello Guys,
This is the third time i have 'Your cache is running out of
filedescriptors' problem with squid 3.0. I have never had similar
problem with 2.5 versions which i was used to use (skipped from 2.5
directly to 3.0
Hello Guys,
This is the third time i have 'Your cache is running out of
filedescriptors' problem with squid 3.0. I have never had similar
problem with 2.5 versions which i was used to use (skipped from 2.5
directly to 3.0)
During the problem, i can check, through cachemgr.cgi,
Amos Jeffries escreveu:
Leonardo Rodrigues Magalhães wrote:
Hello Guys,
This is the third time i have 'Your cache is running out of
filedescriptors' problem with squid 3.0. I have never had similar
problem with 2.5 versions which i was used to use (skipped from 2.5
directly to 3.0
Munawar Zeeshan (zmunawar) escreveu:
I want squid to not NAT my user IP address. I want my user IP same at
exit from squid . Possible ?
My setup is User --- Squid --- Firewall (Nat) Router
Internet
possible, but not that trivial as you would probably want to.
google for
Robert V. Coward escreveu:
I am running into the standard Open Source fear at my local site. Can anyone
name some major companies that use Squid. We are talking enterprise or ISP here. We
currently have about 100,000 users with heavy streaming video use. Some of the management
are afraid
Alexandre augusto escreveu:
Hi guys,
On the access.log the Squid show TCP_DENIED entry to some part of website
I´m authenticating my users using NTLM and all entry on access.log that DENIED
part of site do not show the standard domain\username on log.
only - -...
This is the
Leonardo Rodrigues Magalhães escreveu:
Alexandre augusto escreveu:
Hi guys,
On the access.log the Squid show TCP_DENIED entry to some part of
website
I´m authenticating my users using NTLM and all entry on access.log
that DENIED part of site do not show the standard domain\username
Alexandre augusto escreveu:
Hi Leonardo,
The problem is that the website just show me part of website information.
The pictures (in most cases flash) is denied.
Do you have any idea ?
Sure !!! First idea look for 403 DENIED and not 407 ones. Those
407 ones are part of the NTLM
Amos Jeffries escreveu:
The Squid HTTP Proxy team is pleased to announce the
availability of the Squid-3.0.STABLE7 release!
This release adds many documentation updates, and several bugs found
in the previous release.
is there any reason for bug #2365
Alexandre augusto escreveu:
Hi all
I will migrate my proxy infrastructure to use Squid.
I´m doing a LDAP (MS AD) authentication without problems but, i´m in trouble to
authenticate my users against MS AD without web popup.(asking for user and
password)
I need to do it as a transparent mode
Mr Crack escreveu:
My ISP banned most sites.
Any comments are welcomed
Change ISP or move from China ..
--
Atenciosamente / Sincerily,
Leonardo Rodrigues
Solutti Tecnologia
http://www.solutti.com.br
Minha armadilha de SPAM, NÃO mandem
Carlos Alberto Bernat Orozco escreveu:
Hi
Why is necessary an additional tool for squid to block web sites like
SquidGuard or DansGuardian? is there an issue with performance?
You're completly mistaken. DansGuardian and SquidGuard are OPTIONAL
tools, they are not REQUIRED.
Squid
DD Dods escreveu:
I'm using Mandriva spring 2007.1, (squid 2.6.Stable7) I
can surf the internet,use messenger even watch a music
video, but can't download a complete program. I've
tried to download avg anti-virus free edition 8.0 -
45.57mb i only receive 25.0mb of the file. I'm
Amos Jeffries escreveu:
tor 2008-06-05 klockan 00:59 +1200 skrev Amos Jeffries:
I think its case-insensitive. Mime RFC defined as SHOULD BE lower-case
and its most often written that way.
It's a regex acl, so -i is needed for case-insensitive operation.
-i applies to all regex
when using the acl type rep_mime_type, are the mime_type cases
sensitive or INsensitive ?? At least on squid.conf i couldnt find the -i
option on it's documentation as well as nothing saying about it being
case sensitive or insensitive.
--
Atenciosamente / Sincerily,
wordaz83 escreveu:
Hello
I write you because I saw you have the same error that me with squid, I've
been looking for the solution but I can't found it, I change the squid
version, the Debian distro and the same error.
If you have the solution I'll appreciate it.
usually telling us
Amos Jeffries escreveu:
Anyway . even with request_header_access or
reply_header_access as i told on the original message, i cannot see
these parameters when using 'Current Squid Configuration' option of
cachemgr.cgi. I think this looks a minor bug ..
It does. Could you file
Squidly escreveu:
I have tried quite a few variations of the squid_ldap_group eg:
[EMAIL PROTECTED]:/usr/lib/squid# ./squid_ldap_group -b
ou=groups,dc=example,dc=com -f
((cn=%v)(member=%u)(objectClass=group)) -B
ou=people,dc=example,dc=com
testuser testgroup
ERR
But cannot get this to run
Amos Jeffries escreveu:
I've seen this at close quarters recently. It worked in 2.5 because
there was only one port. In 3.0 and later it turns off several
components doing expensive network or kernel lookups, not just
authentication.
The fix here is in the documentation as you point
Hello Guys,
I have 2 boxes, one running squid 3.0-stable5 and other 3.0-stable6.
Both hand compiled for enabling ldap authentication helpers.
I got ldap authentication running successfully on both boxes,
there's no problem on that.
the problem is when i issued the
Henrik Nordstrom escreveu:
Not sure if it's a bug or a feature..
But it's very easy to live with. Just set up another http_port for the
transparent interception.
Yeah i also dont know if this is a bug or a feature :) And it's
easy to live with, i agree with that.
Anyway, i
Henrik Nordstrom escreveu:
On ons, 2008-05-21 at 19:16 -0300, Leonardo Rodrigues Magalhães wrote:
Anyway, i think this should be investigated and, if declared as
feature and not bug, it should be at least documented. Actual
'transparent' option documentation says nothing about
Mark Barlow escreveu:
We have started having some problems with some Microsoft sites,
including the Windows Update sites. It would appear that they have
made a change to their site which means that when acessed through
Squid it fails. On windows update you get a 0x80072F78 error.
Mark Barlow escreveu:
The documentation there is for squid 3. My 2.5 from the Ubuntu
repository doesn't recognise the request_header_access
but it has header_access
--
Atenciosamente / Sincerily,
Leonardo Rodrigues
Solutti Tecnologia
Adrian Chadd escreveu:
On Fri, May 16, 2008, Chris Woodfield wrote:
So the question I have is - what exactly is missing from squid 2.6
that prevents full HTTP/1.1 support? I know this is a milestone goal,
but I'm curious where the code is today (vs., say, where is in 3.0,
and planned
You dont want to do that. Changing time format directly on the logs
would break every single log parser solution you pretend to use, as all
of them are waiting epoch times.
Convert it to human readable format when you need.
melvin obiri escreveu:
Hi, I need help with transparent proxy on fedora 6 or fedora.
I have set the http_port to transparent mode as below
http_port 192.168.0.220:3128 transparent
and made a fowarding rule on iptables but am still not able to do
transparent proxy
iptables -t nat -A
melvin obiri escreveu:
Thanks Leonardo,
well, initially the
http_port transparent 3128 was working fine then I thought maybe it
makes my cache open for public.
Get appropriate iptables rules for not allowing external access to
it. Get appropriate http_access rules for not allowing
Nicholas Lehman escreveu:
Hello,
I've recently decided to start a project of being logging traffic to and from a
VPN tunnel I have. I want to be able to log all traffic not just http. I've
found numerous how to docs on setting up a transparent proxy and cache for web
traffic, but nothing
Henrik Nordstrom escreveu:
lör 2008-04-05 klockan 21:53 -0300 skrev Leonardo Rodrigues Magalhães:
The interesting part is that i'm actually migrating from 2.5
directly to 3.0, and that exact scenario works just fine on 2.5-Stable14
! Squid 2.5 Stable 14 handles this scenario
Hello Guys,
i'm having problems with the following scenario:
Linux (Fedora 8) with kernel 2.6.24.3
squid 3.0-stable4 correctly compiled with --enable-linux-netfilter
http_port 8080 transparent in squid.conf
DNAT rule pointing tcp/80 traffic to squid port 8080
Henrik Nordstrom escreveu:
lör 2008-04-05 klockan 18:40 -0300 skrev Leonardo Rodrigues Magalhães:
if i manually point squid on firefox/IE proxy configurations, it
works. But if i let the connection be intercepted, then i only get
'Invalid URL' errors.
That's because your Squid
Tarak Ranjan escreveu:
Hi List,
i have one squid proxy server . all the traffic(http) has been redirect
to the squid ip:port.
now i want to deny the torrent download , using my Proxy. if anyone help
me or share the experience to do it, then it'll be really appreciable .
i have answered
Tarak Ranjan escreveu:
Hi List,
i have one squid proxy server . all the traffic(http) has been redirect
to the squid ip:port.
now i want to deny the torrent download , using my Proxy. if anyone help
me or share the experience to do it, then it'll be really appreciable .
basically you
Ilkka Tuohela escreveu:
The issue here is that I need to control access to parent proxy by ACLs,
and sometimes entries need to be removed from a ACL. Because the ACL
rules always add to the existing ACL, removing a line from external file
and reloading squid does not actually remove it from
François Cami escreveu:
On Mon, 3 Mar 2008 12:00:17 -0500
Steve Snyder [EMAIL PROTECTED] wrote:
How do I allow/disallow access to specific sites by the day of the week?
Example: allow connections to http://www.fun_n_games.com only on Saturdays
and Sundays.
It's easy enough to see that
J. Peng escreveu:
what's the difference between TCP_HIT and TCP_MEM_HIT ?
I found access.log has full of TCP_HIT but few TCP_MEM_HIT, is it right?
TCP_HIT happens when squid took the requested information from the
cache directories, ie, from the disk.
TCP_MEM_HIT happens when
Troy escreveu:
Odd thing is that I am running Squid 2.6. Is there anything special
that has to be done when compiling maybe that is required for NTLM to
work?
So your problem is not NTLM authentication related. It may be
anything else but NOT NTLM authentication through squid :)
--
Jakob Curdes escreveu:
Troy wrote:
Everything I have read says you have to bypass the
proxy to access an NTLM enabled website.nbsp; I just want to verify
this is still the case.
This is not a squid problem but a limitation of the NTLM protocol
which was not designed to work through a
jeff donovan escreveu:
okay that sounds promising. Your saying ( i'm doing this so my fuzzy
brain is clear ) that you can access a web site that uses NTLM to
access restricted web content ? right now 2.5 does not work.
Yes ... i can confirm that based on my tests here. sites with NTLM
jeff donovan escreveu:
thank you very much leonardo.
now :) would you be willing to share your config ? is there anything
special that you had to do in your test box.
No special configuration is needed. Just get 2.6/3.0 working and
you'll have NTLM site authentication working properly
Andrew Hodgson escreveu:
Hi,
I have a Squid server used on a test network. I want to allow some users to
authenticate through the proxy if they are on specific IP addresses, to test
software functionality, using basic authentication. However, the rest of the
clients should go through
Squid Dev escreveu:
On a different note, I understand that it is fundamentally impossible
to authenticate users while running Squid in transparent mode. Is
there a way to capture the client's username while running Squid in
transparent mode?
On a corporate environment, where users have
Marcus Kool escreveu:
Mar Matthias Darin wrote:
Hello,
Frank Bonnet writes:
OK thanks a lot for your lights , I think the easyiest way
for me would be protocol filtering done by the firewall ...
This is also the most secure. I personally do not let squid handle
the CONNECT. IMHO, this
Yeah squid supports only HTTP but also support connection
tunneling with CONNECT method.
My experiences showed that almost all 'P2P-through-squid' uses
CONNECT and connects to IP addresses instead of hostnames. My
experiences showed that CONNECT to ip addresses almost do NOT
Marcus Kool escreveu:
Yes, indeed Squid *does* support P2P using HTTPS tunneling.
just to make things clear . squid supports connection tunneling
and not only HTTPS tunneling. A misconfigured squid can be used, for
example, by worms to send spam emails !!! worms can connect to squid
Probably this is not squid related . but lets go.
if squid receives a request, it HAS to answer it. So if you want
some requests to NOT reach squid, IE let it pass through, so you'll need
to exclude these requests BEFORE they reach squid.
Are your browsers manually configured
Ammad Shah escreveu:
i set the maximum object size in squid configuration 34 MB, i am using
fedora 7 and also tested this on fedora 8. when i try to download same
object from same url but getting that object from internet instead of
cache.
why squid is not caching objects ? or its problem of
Amos Jeffries escreveu:
Leonardo Rodrigues Magalhães wrote:
Ammad Shah escreveu:
i set the maximum object size in squid configuration 34 MB, i am using
fedora 7 and also tested this on fedora 8. when i try to download same
object from same url but getting that object from internet instead
If you have ONLY the 'auth_param ntlm' thing and do NOT have the
'auth_param basic', so there will be no username/password prompt.
For having the username/password prompt window, you would have to
configure a 'basic' authenticator. Configuring the ntlm only, you would
probably
piyush joshi escreveu:
Dear All,
Is it possible that in transparent proxy we can
authenticate users from ldap or from any program one more thing i want
that in transparent proxy whenever users open his or her browser
firstly my company page should be displayed on the browser i
Umesh Bodalina escreveu:
Our pac file is currently served to clients via IIS using ftp.
Is there any way we can serve this using our squid proxy servers?
How would we do this?
Probably you can't, because squid is not a http nor a ftp server. It
cannot hosts files itself. squid is
Polenyik Tibor escreveu:
Hi,
I'd like to measure the time how many time a machine (ip address) use
the internet, web browsing.
Is it possible ?
Yes, SARG can do that, i'm pretty sure. Check your sarg.conf ...
Anyway, times on access.log and processed by ANY tool wont give you
No it cannot bind to a phisical interface. Anyway you can assure
that with firewall rules.
What squid is capable of doing, as Beavis wrote, is to bind to a
specific IP address. But instead of using tcp_outgoing address as
proposed by Beavis, i would recommend using the 'binded' ip
Once i tried that and had LOTS of false-positives with Windows CGI
based applications, just like:
http://www.something.com/myscript.exe?value=blabla
myscript.exe is not a downloadable file, it's a script that will be
executed and return HTML code to the browser.
And there's
Indunil Jayasooriya escreveu:
Hi,
I want to block spyware while users browse internet. Are there any
ACLs to block this ?
Have you done this before?
squid has no 'malware ACL type'. It has, tough, several different
ACL types that can be used to classify and deny malware access,
Easy stop using NTLM authentication and use another
authentication schema.
The idea of NTLM is NOT having authentication popup. So if you need
popup authentication, stop using NTLM :)
Abd-Ur-Razzaq Al-Haddad escreveu:
Hi all,
I've got squid setup using NTLM Authentication,
I
1 - 100 of 126 matches
Mail list logo