search for: cache_effective_group

...w do you handle this? With Squid's intern 'logfile_rotate' directive or with logrotate? What I'd like to do is rotate this logfile about once a week. 2. Which user is Squid supposed to run as under CentOS? On my Slackware server I had the following: cache_effective_user nobody cache_effective_group nobody What's an orthodox setting for CentOS? 3. The access rules are a bit minimal. Do they seem OK to you for a LAN? Any suggestions? Cheers, Niki -- Microlinux - Solutions informatiques 100% Linux et logiciels libres 7, place de l'?glise - 30730 Montpezat Web : http://www.microli...

...128 tcp www - ACCEPT $FW net tcp www zones fw firewall net ipv4 loc ipv4 policy fw net ACCEPT net all DROP info all all REJECT info squid.conf httpd_accel_host virtual httpd_accel_port 80 httpd_accel_with_proxy on httpd_accel_uses_host_header on cache_effective_user nobody cache_effective_group nobody acl my_firewall src 191.100.100.100/255.255.255.0 http_access allow my_firewall __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ________________________________________________...

...emaker acl Safe_ports port 777 # multiling http acl CONNECT method CONNECT http_access allow localhost http_access allow localnet http_access allow manager localhost http_access deny !Safe_ports http_access deny CONNECT !SSL_ports http_access deny all cache_mgr cache-me cache_effective_user squid cache_effective_group squid logfile_rotate 0 log_icp_queries off buffered_logs on half_closed_clients off maximum_object_size 2048 KB ------------ All Configuration is works. I can browsing most website. But, I have another problem when implementing this multiple uplinks methods. 1. Messenger tools like YM will disconn...

...logfile about once a week. The rpm should have configured logrotate: rpm -q --list squid |grep logrotate will show where the config file lands. > 2. Which user is Squid supposed to run as under CentOS? On my Slackware > server I had the following: > > cache_effective_user nobody > cache_effective_group nobody > > What's an orthodox setting for CentOS? The rpm should have created the squid user and group: rpm -q --scripts squid will show what it ran to do that. > 3. The access rules are a bit minimal. Do they seem OK to you for a LAN? Any > suggestions? Unless you want to restri...

...d chgrp -R squid squid Now edit the squid.conf file ********* From the Squid documentation but not Smartfilter /usr/local/squid/etc/squid.conf common parameters: http_port leave as default cache_mgr email settings cache_effective_user squid cache_effective_group squid ftp_user Leave alone for now visible_hostname Set this to the IP hostname Search for "INSERT YOUR OWN RULE" and put in an appropriate ACL entry for the internal network, like this: # Exampe rule allowing access from your local networks. Ad...

...pam = { ticket_lifetime = 1d renew_lifetime = 1d forwardable = true proxiable = false retain_after_close = false minimum_uid = 1 squid.conf # Do not edit manually !http_port 192.168.0.1:8080icp_port 0 pid_filename /var/run/squid.pidcache_effective_user proxycache_effective_group proxyerror_directory /usr/local/etc/squid/errors/Englishicon_directory /usr/local/etc/squid/iconsvisible_hostname localhostcache_mgr admin at localhostaccess_log /var/squid/logs/access.logcache_log /var/squid/logs/cache.logreferer_log /var/squid/logs/referer.loglogfile_rotate 0cache_store_log nones...

Am 05.03.2018 um 13:04 schrieb Nicolas Kovacs <info at microlinux.fr>: > > Le 28/02/2018 ? 22:23, Nicolas Kovacs a ?crit : >> So far, I've only been able to filter HTTP. >> >> Do any of you do transparent HTTPS filtering ? Any suggestions, >> advice, caveats, do's and don'ts ? > > After a week of trial and error, transparent HTTPS filtering