On 19.03.10 15:00, Sabyasachi Ruj wrote:
> I went through this thread:
> http://www.mail-archive.com/squid-users@squid-cache.org/msg59892.html.
> I also needed that IMAP to work via Squid. There was no conclusion on
> that thread.
need? Why do you _need_ it?
--
Matus UHLAR -
able it from answering with weak
> ciphers and SSLv2 to pass the scans.
check https_port options cipher= and options=
for the latter you can play with "openssl ciphers".
I use (not on squid), "DEFAULT:!EXP"
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.s
; I checked, but its not clear to me
> > do I need to install some packages/rpms ? and then ?
> > I mean how can I resolve this issue
On 18.03.10 08:46, Ivan . wrote:
> run a cron job to restart Squid once a week?
or simply not using tons ov regular expressions within squid access lis
e system regex is issue, wouldn't it be better/simpler to just compile
> with PCRE? (LDFLAGS="-lpcreposix -lpcre"). It doesn't leak and as a bonus
> makes your REs faster.
if the regexps are main issue, the best would be get rid of them as much as
possible.
--
Matus UHLA
=: not found
> /usr/local/bin/flip.pl: 4: Syntax error: ")" unexpected
> /usr/local/bin/flip.pl: 2: =: not found
apparently there's something broken with the flip.pl script. Maybe it is not
a perl script or has some garbage at the begin?
--
Matus UHLAR - fantomas, uh...@fan
t built up another RedHat ELv5 box, with Squid v 3.0 stable 16
> and the site works
>
> The existing squid proxy running Squid v2.6 stable21 does not work
did you try to connect from the site running squid and did it work?
I am sure it is not your squid who sends packets back to your networ
ok directly at the script that appears broken to see
if it's any different?
Or is there any possibility you use kind of object or path rewriting (icap,
ecap, URL rewriter) that could lead to these errors?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
He who laughs last thinks slowest.
is is to avoid
> using 2 disks for 1 logical read. I would recommend a stripe size of 64 KB
> or more. When you have lots of large objects, an even larger stripe size
> is recommended.
for RAID0 part, it better should not being used. there's no speed
improvement in RAID0,
On 17.02.10 14:26, Mister Raven wrote:
> Has anyone had any success setting up a captive portal on squid 3.1.x
> in transparent proxy mode, and running dansguardian 2.2?
portal with transparent proxy? Shouldn't that be reverse proxy mode?
--
Matus UHLAR - fantomas, uh...@fantoma
es.
I think it's more case of browsers not supporting proxying via https.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Honk if you love peace and quiet.
> On Tue, Feb 16, 2010 at 7:17 AM, Matus UHLAR - fantomas
> wrote:
> > Are you aware of all security concerns when intercepting HTTPS connections?
> >
> > ...I just wonder when will first proactive admin (or someone from his
> > managers) sent
> > to p
problem
> >> but one never knows.
> On Tue, 16 Feb 2010 14:20:15 +0100, Matus UHLAR - fantomas
> wrote:
> > but it connect to standard HTTP port, right?
On 17.02.10 10:51, Amos Jeffries wrote:
> Yes.
> > I think that the problem itself lies in cachemgr.cgi not be
> > On 14.02.10 01:32, J. Webster wrote:
> >> Would that work with:
> >> http_access deny manager CONNECT !SSL_ports
> On Mon, 15 Feb 2010 15:32:30 +0100, Matus UHLAR - fantomas
> wrote:
> > no, the manager is not fetched by CONNECT request (unless somethi
active admin (or someone from his managers)
sent
to prison because of breaking into users connections.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek re
sue remains whether allowing password access to the cache
> >> manager is enough.
> >> How else can this be made more secure? I guess not if the only way for me
> >> to access it is through a public IP address.
> >
> > I think allowing managr only on https
else can this be made more secure? I guess not if the only way for me to
> access it is through a public IP address.
I think allowing managr only on https_port should work and help...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-
On 09.02.10 00:45, Bruno de Oliveira Bastos wrote:
> I need some function in PHP to user put username and password and the
> page in PHP auth in Squid
is this the same request as you poste4d on Feb 7th?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wi
ry ICAP, but first try to find a program that really can remove the
host part from links (not from comments or text)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT
out poor
> service levels and lack of support, so I'm not sure that they will be
> that helpful. http://mybroadband.co.za/news/Broadband/11359.html
This may also indicate that _this_ is the poor service level...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
War
mething?
>
> surfing over proxy works ;)
apparently squid offers you the HTTP service, but not the DNS service. Squid
is only a HTTP proxy, you are missing a DNS server.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertisin
hing garbage into Squid
> instead of HTTP.
> This is not fatal for you or Squid, but may cause the person who uses
> that machine to have a very bad web experience.
maybe the wrong protocol is intercepted e.g. https.
Note that squid is HTTP proxy, the only protocol it suppor
che2
> /dev/sde1 1.8T 72G 1.7T 5% /cache3
> /dev/sdf1 1.8T 72G 1.7T 5% /cache4
>
> we noticed that when cache is nearly about 280GB (70GB on each
> cache_dir), squid closes all sessions every 1 hour for 30 seconds,
> then it works back norma
sl.so.0.9.8e
> /usr/local/ssl/lib/libssl.so.0.9.8
do they all really exist?
why isn't there /lib64/libssl.so.0.9.8 ?
what does "ldd /usr/local/squid/sbin/squid" say?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail a
t description of the problem. Maybe even with the
description.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
(R)etry, (A)bort, (C)ancer
ust
provide certificate(s) for the remote server(s) which you must generate (and
sign by the authority clients will trust) when needed. You can't know the
private key of remote servers, that's why you must generate all the stuff.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fan
it's incorrect since HTTP (which we are still
talking about, correct?) defines the word "transparent" differently.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
2B|!2B, that's a question!
ust point the clients to it. Transparent, not sure.
squid is always transparent from the HTTP point of view, unless you use
*CAP.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu ch
ly received by another client.
5) I think ;-)
Yes sendfile is only applicable on content fetched from the disk.
Apparently nobody implemented sendfile in squid yet and apparently nobody
will do it, but I wonder if all those reasons are really that problematic...
--
Matus UHLAR - fantomas,
for 50GB partitions, I'd use 32768M for cache_dir on each of them, or even a
few GB COSS on each and even less for cache_dir
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu c
256
>> cache_dir aufs /web/cache/2/aufs/ 81920 290 256
On 26.01.10 00:03, Amos Jeffries wrote:
> add min-size=24576 to the AUFS to prevent them grabbing the small files
> intended for COSS.
the latter should be 24577 or the first 24575 so we'd know where 24k objects
would be
2) No such file or
> directory
> 2010/01/17 19:21:05|/data/cache/03/5C/00035C53
> 2010/01/17 19:21:05| DiskThreadsDiskFile::openDone: (2) No such file or
> directory
> 2010/01/17 19:21:05|/data/cache/03/5C/00035C53
did you run "squid -z" after making
>>> window and more hits overall.
> Matus UHLAR - fantomas wrote:
>> Is this usable between peers manually configured or does it require support
>> from network layer? I've always thought it requires intercepting and
>> encapsulating HTTP connections by intermediate
is not quoted as stable.Is it reliable?.
no. intercepting (called transparent proxying) SSL protocols is not possible
without dangerous side-effects.
Also, intercepting other protocols than HTTP is mostly impossible.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning:
e I asked about HTCP, I got answer that there's no benefit from it
yet. When did this change?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek rek
you clients are too dumb to trust your proxy in such case.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Boost your system's spee
eny all
requests containing those headers. Note that users apparently can disable
adding of those headers...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek rek
ize=3145728 block-size=4096
> maxfullbufs=10
too big max-size imho.
> cache_dir aufs /var/cache/squid/cacheA 16000 64 256
min-size could go here.,,
> Sounds this reasonable, did I overlook something, or is all this just crap?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://ww
s still not fully http-1.1 compliant, It's quite possible that
it doesn't assume keepalive to be default for http-1.1 requests.
however I cannot confirm this...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to
> On 29.12.2009, Matus UHLAR - fantomas wrote:
> > If you are using 2.7, configure 'coss' type cache_dir and put all small
> > files (e.g. under 128MB) there. It should be faster and save much of disk
> > space (and inode table too)
On 30.12.09 21:46, Heinz Diehl
as to "sextant"?
I think that this is a perfect example how not to do content filtering.
Should it also replace "ass" with "butt"? Because people making buttumptions
will be embarbutted when they observe this mbuttive mistake.
--
Matus UHLAR - fantomas, uh...@fantom
e 'coss' type cache_dir and put all small
files (e.g. under 128MB) there. It should be faster and save much of disk
space (and inode table too)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varova
problem, I use Debian and the
> package dosen't have ssl support (yacks!). But this I can solve by
> myself.
well, seems that linking squid (GPL) with openssl is problematic...
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=251988
support of GnuTLS would help here. Or relicensi
rd that the copy on the disk was deleted, and a TCP_MISS
> was reported.
did you check if the page is cacheable?
Did you try fetching it with "Cache-Control: only-if-cached" header?
It's quite possible that the page is not cacheable, so squid won't cache it,
or the cach
lacement while other newer cached
> pages have been flushed out. Why's that?
apparently nobody asked for it and previous cleanings removed older objects.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address
On 08.12.09 14:30, Ali Ahsan wrote:
> Does forx provide authentication against ldap.Like we use in squid user
> must authenticate before using proxy.
the FTP protocol does not support proxying, so you can't use proxy
authentication. You only can use external authentication there.
--
12.09 02:41, John Doe wrote:
> Yes but, as long as squid does not handle disk crashes gracefully, I am
> stuck with RAID...
what kind of RAID? for mirrors, you don't need stripe size. Stripes aren't
safer than single disks. RAID5 is slow, unless you have hardware RAID.
--
Matus
ose all connections etc.
it's tunable by the shutdown_lifetime option.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
LSD will make
te that you won't gain anything but your boss satisfied using the
tunneling. RTSP can't be cached now and direct access to those sites would
change nothing (excepe you'd have to control the access on different place)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fanto
ine it's running on.
Unles anyone implements RTSP to squid or any other proxy, it's useless to
use that proxy for RSTP.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chce
be cached for 1.2 day?
not exactly. refresh_pattern only hints squid how long to condired data
fresh. The objects still can be revalidated and considered as still active.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertisi
_replacement_policy and memory_replacement policy directives.
> 3. How can I "remove cache" older than 1 week (same logic as log rotation)
very hardly. squid has different lgorithms to remove data from cache, based
on how often were they accessed.
--
Matus UHLAR - fantomas, uh...@fantomas
list is bad.
http://www.unicom.com/pw/reply-to-harmful.html
> don't know how many times I've sent responses directly back to the
> sender because I just started typing the response.
get a mail client that does support mailing lists.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; htt
he page's title and it disappears.
this has apparently nothing to do with _caching_ itself, maybe with
_accessing_ using squid.
First try to access the server directly, not through squid.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive
what is your logfile_rotate value? If it's 0, squid only reopens log files
and expects other program(s) to rotate them instead.
Can squid manipulate files in its logging directory?
See cache's logfile (set by cache_log) to see what happens when you issue
the rotate command...
--
Matu
uld be for a packet sniffer on the
> outgoing DNS connection soliciating the access to enabled ssl site
> and then immediately create a firewall rule for that.
>
> What is the best practice?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to r
ry into my openssl
> installation directory. works great now!
copied? Are you running chrooted or why can't you use them right in
/etc/ssl/certs ? I think that is the whole purpose of ssl-certificated to
have them shared and automatically updated...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http:
ts for all client
> computers who are accessing an ip address of 10.0.0.0. I want these sites
> just get passed through the proxy without caching the data.
skip using proxy for those sites. Why to use proxy for caching those data if
it should not cache them?
--
Matus UHLAR - fantomas, u
On 21.10.09 10:48, Struzik Wojciech wrote:
> I using Squid 2.7. How can i add custom field max-age to Cache-Control
> response header ???
why would you want to do that on squid?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive
ex -i /webmail.*
> acl exchange_urlpath_regex urlpath_regex -i /OMA.*
> acl exchange_urlpath_regex urlpath_regex -i /OWA.*
What's the point?
do you want to disable access to the parts of OWA that aren't used?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
W
you should specify CIDR ranges instead of IPs ?
> memory_replacement_policy lru
> cache_replacement_policy lru
heap policies (even "heap lru") are much faster here.
> cache_dir ufs /var/spool/squid/cache 80000 16 256 IOEngine=Blocking
> maximum_object_size 4194304 bytes
have cache digest. Enable it on the
peer or disable it on this cache by using "no-digest" option in cache_peer
line specifying that neighbour.
Do you run multiple squid instances on the same machine?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I
t access is working
> fine as well.
>
> However, instead of having everyone email me any time they'd like a new
> site added to the whitelist, I'd like to give them the opportunity to add
> the site themselves.
why to use any kind of blocking web sitez, when users
ble? Or is there a better way then to create dozens of
> config files with the only difference being the IP?
What's the point? Do you want change IPs because of privacy issues?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail a
ote:
> Thank you for your message. That is what i am saying, I have
> configured Thunderbird to access internet directly and still it
> doesn't work.
I'm sorry but this is completely off-topic on this list. Have you tried to
contact your ISP? We won't help you anymore on this li
.10.09 01:12, Henrik Nordstrom wrote:
> Yes.
>
> But bug #2451 made it drop the upstream connections a bit too often...
> fixed in 2.7.STABLE7.
so the problem was not "3.1 uses too many connections" but "2.7 drops
connections when it should not".
A bit funny ;)
--
Matus
4 objects in cache) is that
> normal?
its quite possible, object like directory index can be cached too.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek
get this to work so the user can authenticate to a sharepoint
> site.
Why not upgrade to 2.7 (stable) or 3.1 (beta)?
They have much more features and 2.5 (even 2.6) is obsolete now and may have
security bugs
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning:
rkut.com .sex.com
> .teen.com .adult.com .mp3.com
> http_access deny videos
why do you wonder? many/most of yahoo images are placed on yimg.com...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovani
t said it. Squid is a HTTP proxy and can not be used as proxy for
POP/IMAP/SMTP protocols. You must connect to those services directly, not
through proxy.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varov
tp://www.squid-cache.org/bugs/show_bug.cgi?id=2654
for now we include small file containing only unique_hostname setting.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
WinError #9: Out of error messages.
> refresh_pattern \.html$ 300 50% 10 ignore-reload
ignore-reload may cause problems for clients. I strongly discourage using
that. Better skip those refresh_patterns, for now se can use defaults.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive
the best one for you with any accuracy.
On 23.09.09 11:28, Luis Daniel Lucio Quiroz wrote:
> I did change my memory_replacement_policy, and mean_object_size because
> server
> is in production, a -k reconfigure is enoght or I must stop and start squid
sorry, mean_object_s
uid only tried to cache fetched content.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Nothing is fool-proof to a talented fool.
er_access
directives etc...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
WinError #9: Out of error messages.
d updates. Other cached data can be deleted as needed.
caching windows updates is not easy since thery are huge files, usually only
a part of them is being fetched which very squid-unfriendly (well, it's
completely caching-unfriendly).
Read http://wiki.squid-cache.org/SquidFaq/WindowsU
be combined with *ufs/diskd, COSS for smaller
files, the other one for bigger files.
Not sure on what size it should be split, maybe around 16-64KiB?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Va
> mån 2009-09-14 klockan 16:07 +0200 skrev Matus UHLAR - fantomas:
> > btw, why it isn't possible to use authentication on the same port as
> > "transparent" proxy? Couldn't squid detect if to use authentication just
> > from finding out if the connection
heap GSDF for memory objects and LFUDA for on-disk objects
- last time I've been looking at LFUDA vs GSDF I've had about 2% difference
It's been years ago, maybe someone will see higher difference now
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I
f there is just one client attached.
>
> File a bug report perhaps? Or better yet find a developer who can invest
> some time into looking into the issue..
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
arent option and have
> your clients configured to use that as proxy.
btw, why it isn't possible to use authentication on the same port as
"transparent" proxy? Couldn't squid detect if to use authentication just
from finding out if the connection was redirected or not?
-
you mean by a FQDN? The only possible way is
using forward-confirmed rdns I'd say which is somehow redundant with 3.
unless you are willing to accept reverse DNS that can be faked annd without
forward confirmation is just useless...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.f
e if you need to do this often/periodically do this.
Properly configurung the squid should help you to avoid this step - why
bother to cache files if it slows down squid and you will even remove them?
Especially when squid can better choose what to remove and what to leave in
the cache
--
Ma
to try that)
> > or
> > use a dedicated FTP proxy (aka http://google.com/search?q=frox)
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Boost your system's speed by 500% - DEL C:\WINDOWS\*.*
> > > This causes the Cisco router to redirect the response to the other
> > > Squid server which just drops it.
> mån 2009-08-17 klockan 10:42 +0200 skrev Matus UHLAR - fantomas:
> > I think that is a bad configuration on DNS or your network.
On 17.08.09 23:43, H
s
>
> I ran memtest86 on the memory but in a different box. It checked out OK.
actually, the motherboard may be broken too.
How does the system behave when squid stops responding? do other programs
work, can you log in and run "top" or "iostat" to see disk I/O?
Di
> mån 2009-08-17 klockan 10:28 +0200 skrev Matus UHLAR - fantomas:
>
> > Is there any problem with current scheme where they are cached by underlying
> > OS' cache?
On 17.08.09 23:36, Henrik Nordstrom wrote:
> Yes, there is a big difference in latency and CPU usage
c mailing list. Whatever you send here, is
public by definition.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
- Holmes, what kind of
ng to CPU usage...
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
One OS to rule them all, One OS to find them,
One OS to bring the
> On Fri, Aug 14, 2009 at 5:15 PM, Matus UHLAR -
> fantomas wrote:
> > Squid ignores the original destination of connection in order to provide
> > correct content. Many servers provide the same (their own) content
> > independently on what Host: you ask for, so the cac
> fre 2009-08-07 klockan 13:12 +0200 skrev Matus UHLAR - fantomas:
> > fixing in what way? to cache objects from disk in squid's memory in addition
> > to disk cache?
On 16.08.09 22:24, Henrik Nordstrom wrote:
> Yes.
Is there any problem with current scheme where they are
thread, Henrik had suggested that someone needs to submit
> a patch to allow Squid to connect to the same IP address as the client
> connection, but I can't tell if anyone has done this yet.
avoid using the proxy or explain why do you see different host than squid
does...
rsion of squid. It was compiled
> in 64 bit environment to produce that error.
HAve you tried "make clean" or even "make distclean" in the begin"
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
I just got lost in thought. It was unfamiliar territory.
saying that proxy
configured in browser and not set up to intercept connections is transparent
if it does not alter the content.
what many people mean by "transparent" proxy is really an "intercepting"
proxy. Sadly, the option for processing intercepted connections was named
"t
ion/msword
... and cachd version was provided by squid since.
> Tried to do the same for the Squid Cache 2.7 STABLE3 and 3.0.STABLE18
> Debian Lenny with negative result.
I can't understand what is the problem, or, what do you mean is the problem,
how do you want squid to behave.
--
Ma
beyond what is required for proxy authentication and
identification.
This is a citation from RFC2616 which defines the HTTP protocol. Since we
are talking about HTTP protocol, we should use words as they are defined
there, otherwise it could lead to misunderstandings.
--
Matus UHLAR - fantomas,
3. Actually already done and tested, just polishing
> it up for submission.
fixing in what way? to cache objects from disk in squid's memory in addition
to disk cache?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising
> Matus UHLAR - fantomas wrote:
>> so you have 4GiB of RAM and confiured 3GB for squid's mem_cache?
>>
>> when that get filled up, you either start swapping or get ouf ot RAM and
>> your squid will crash...
On 02.08.09 21:28, Waitman Gobble wrote:
> i've ke
ron probably.
No, I do not know about any... tried google?
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
I wonder how much deeper t
On 02.08.09 01:59, Waitman Gobble wrote:
> Matus UHLAR - fantomas wrote:
>> I hope you know what are you doing by configuring that big cache_mem...
>> http://wiki.squid-cache.org/SquidFaq/SquidMemory
> hmmm, i've read that. i don't by the way,
yes, it seems soo..
&g
he video after a few min, it retrieves the video from the cache, but
> if i try to go to the same video from another pc on the same LAN it
> does not retrive it from the cache, and it does not even show up in
> http://localhost/videocache.
sre you sure the other PC is using the same squid cac
101 - 200 of 1141 matches
Mail list logo