Displaying 20 results from an estimated 400 matches similar to: "SELinux breaks Squid's ssl_crtd helper"
2016 Feb 04
5
Squid as interception HTTPS proxy under CentOS 7
Hi all,
I am trying to configure squid as a interception HTTPS proxy under CentOS 7. At every https request, I am receiving a certificate error.
My current config for squid is:
# My localnet
acl localnet src 172.22.55.0/28
acl localnet src 172.22.58.0/29
acl SSL_ports port 443
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70
2015 Mar 06
2
Squid on CentOS 7: few questions
Hi,
I recently migrated my office's server from Slackware64 14.1 to CentOS
7. Right now I'm in the process of configuring the Squid web proxy. I
edited the default /etc/squid/squid.conf, and here's what I have so far:
--8<--------------------------------------------------
# /etc/squid/squid.conf
# Nom d'h?te du serveur Squid
visible_hostname amandine.microlinux.lan
#
2020 Jul 30
1
ntlm authentication issues
Hi,
I set up Squid 4.6 on Debian 10 and I'm having problems with browser
authentication on a Windows station.
I did the tests on the command line and apparently it's OK.
root at proxy:/etc/squid/acls# /usr/bin/ntlm_auth
--helper-protocol=squid-2.5-basic
Registered MSG_REQ_POOL_USAGE
Registered MSG_REQ_DMALLOC_MARK and LOG_CHANGED
lp_load_ex: refreshing parameters
Initialising global
2012 Jan 21
1
squid transparent proxy problem
Greetings,
I installed a squid 3.1.10.i686 squid to a centos 6.2i686. The proxy is
working fine with the default config.
After I decided to use it as a transparent proxy, I added two lines to
config: http_proxy 10.0.5.1:3128 transparent, always_direct allow all
http_port 10.0.5.1:3128 transparent
#
# Recommended minimum configuration:
#
acl manager proto cache_object
#acl localhost src
2016 Feb 04
0
Squid as interception HTTPS proxy under CentOS 7
check out sslbump documentation:
http://wiki.squid-cache.org/Features/SslBump
--
Eero
2016-02-04 15:24 GMT+02:00 C. L. Martinez <carlopmart at gmail.com>:
> Hi all,
>
> I am trying to configure squid as a interception HTTPS proxy under CentOS
> 7. At every https request, I am receiving a certificate error.
>
> My current config for squid is:
>
> # My localnet
2016 Feb 04
0
Squid as interception HTTPS proxy under CentOS 7
On 04/02/2016 13:24, C. L. Martinez wrote:
> Hi all,
>
> I am trying to configure squid as a interception HTTPS proxy under CentOS 7. At every https request, I am receiving a certificate error.
>
> My current config for squid is:
>
> # My localnet
> acl localnet src 172.22.55.0/28
> acl localnet src 172.22.58.0/29
>
> acl SSL_ports port 443
> acl Safe_ports
2015 Mar 06
0
Squid on CentOS 7: few questions
2015-03-06 12:29 GMT-06:00 Niki Kovacs <info at microlinux.fr>:
>
> I recently migrated my office's server from Slackware64 14.1 to CentOS 7.
> Right now I'm in the process of configuring the Squid web proxy. I edited
> the default /etc/squid/squid.conf, and here's what I have so far:
>
> --8<--------------------------------------------------
> #
2017 May 25
0
CentOS6 and squid34 package ...
Hello
what is the essential difference between the default squid package and
this squid34 package,
as I have problems using this squid34 package for FTP connections;
there are no shown icons, when going to e.g. ftp://ftp.adobe.com/
when I tell the browser to show the image then I get this squid
generated message ...
the same config /etc/squid/squid.conf works with the default squid
package
2009 Feb 02
1
squid stops working several times a day
Hello,
I have a problem here with:
[root at ablprx01 squid]# cat /etc/*release
CentOS release 5.2 (Final)
[root at ablprx01 squid]# rpm -qa|grep -i squid
squid-2.6.STABLE6-5.el5_1.3
The web proxy process (used by 300-400 users)
seems to run ok:
[root at ablprx01 squid]# ps uawwwx|grep squid
root 2304 0.0 0.0 7792 1268 ? Ss 08:45 0:00 squid -D
squid 3082 27.7 0.9
2007 Feb 09
1
trouble https multiple uplinks... how?
hello, my name is Denny. I am new in this list.
I am trying use multiple uplinks as describe in the lartc
documentation (http://lartc.org/howto/lartc.rpdb.multiple-links.html)
with squid transparent proxy in my gateway server.
let me draw the configuration :
/-----------------
-----DSL1-----| \
|Transparent proxy |----Local network
-----DSL2-----|
2007 Jul 19
1
yum through a squid proxy
Hello,
I've got a centos5 box that is now behind a what was transparent squid
proxy. The proxy now has it's own dedicated ip and uses proxy basic
authentication. I've got a firewall that redirects all outgoing port 80
traffic to that ip so anyone wishing access goes proxied. The problem is yum
on my centos5 can't retrieve the .xml files for the various yum
repositories. In
2007 Jan 08
2
shorewall/dansguardian/squid problem
ive got a config thats
client -> server ->Dansguardian->Squid -> onward adn I want to
transparently redirect web traffic to DG/Squid
Not sure where the problem lies - hoping you guys can help me and at
least tell me that its NOT my shorewall config
heres the configs
When I point a browser straight at 3128 or 3129 I get web pages back
and the appropriate stuff in the logs .
I get a
2018 Mar 10
0
SELinux breaks Squid's ssl_crtd helper
On 03/09/2018 05:18 AM, Nicolas Kovacs wrote:
> Do allow this
> access for now by executing:
> # ausearch -c 'ssl_crtd' --raw | audit2allow -M my-sslcrtd
> # semodule -i my-sslcrtd.pp
>
> Unfortunately the suggested solution doesn't work
Start by running "ausearch -c 'ssl_crtd' --raw" by itself.? Try to
determine whether or not all of the affected
2012 Oct 03
1
squid cache question
Hi Friends,
Same question has been asked on the Squid mailing list but so far no reply
on the mailing list so posting it here also.
We are trying to cache some files from apple.com like .dmg, .pkg,
.ipa etc.. so that local clients can fetch the data from the cache.
The problem we are facing is that we have download restrictions for
every client to 25 MB during work hours except for a particular
2007 Jun 27
4
Asterisk+squid
Hi,
I've installed Asterisk 1.2.13, and it works ok, but I have some
voip clients behind a squid proxy server, and this clients can't connect
to the Asterisk server. I added the access lists which permit the
voip ports through the proxy, but the clients can't connect. This access
lists in squid.conf are:
acl safe_ports port 5060
acl safe_ports port 4569
acl
2016 Oct 29
2
Squid question
I'm having issues getting squid to send traffic through a specific
upstream gateway.
I need for a MS WSUS server and a Symantec Endpoint Protection Manager
to get through a squid proxy to get out to Microsoft and Symantec
respectively to get MS patches and Symantec DAT files.
The traffic needs to go through the squid proxy, through a firewall, and
through an upstream McAfee gateway
2018 Mar 05
7
Squid and HTTPS interception on CentOS 7 ?
Am 05.03.2018 um 13:04 schrieb Nicolas Kovacs <info at microlinux.fr>:
>
> Le 28/02/2018 ? 22:23, Nicolas Kovacs a ?crit :
>> So far, I've only been able to filter HTTP.
>>
>> Do any of you do transparent HTTPS filtering ? Any suggestions,
>> advice, caveats, do's and don'ts ?
>
> After a week of trial and error, transparent HTTPS filtering
2007 Mar 26
2
How to limit a user to access a few sites.
Hi ,
I am now running squid with ncsa_auth.
I have bound ip addresses to usernames. So users now can access Internet
from their ips.
Now I want a few users to prevent from accessing all the sites. But Instead,
I want them to allow to access a few sites scuh as google.com,cnn.com,
bbc.com. I want to limit in that way.
I have wriiten below rules. But those users still can access all the sites.
2007 Mar 24
1
Binding an ip address to an username with SQUID passwod file
Hi List,
I want to bind an ip address to a username with squid by using squid
password file.
I am using ncsa_auth programme. Below are line that I have added to
squid.conf file.
auth_param basic program /usr/lib/squid/ncsa_auth /etc/squid/squid_passwd
auth_param basic children 5
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hours
auth_param basic
2007 Oct 31
1
template of squid.conf problems
while setting up a squid module i came across a problem trying to use a
template of "squid.conf".
the following text in "squid.conf" raises an error from puppet, without
this text the template works.
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320