similar to: SELinux breaks Squid's ssl_crtd helper

Hi all, I am trying to configure squid as a interception HTTPS proxy under CentOS 7. At every https request, I am receiving a certificate error. My current config for squid is: # My localnet acl localnet src 172.22.55.0/28 acl localnet src 172.22.58.0/29 acl SSL_ports port 443 acl Safe_ports port 80 # http acl Safe_ports port 21 # ftp acl Safe_ports port 443 # https acl Safe_ports port 70

Hi, I recently migrated my office's server from Slackware64 14.1 to CentOS 7. Right now I'm in the process of configuring the Squid web proxy. I edited the default /etc/squid/squid.conf, and here's what I have so far: --8<-------------------------------------------------- # /etc/squid/squid.conf # Nom d'h?te du serveur Squid visible_hostname amandine.microlinux.lan #

Hi, I set up Squid 4.6 on Debian 10 and I'm having problems with browser authentication on a Windows station. I did the tests on the command line and apparently it's OK. root at proxy:/etc/squid/acls# /usr/bin/ntlm_auth --helper-protocol=squid-2.5-basic Registered MSG_REQ_POOL_USAGE Registered MSG_REQ_DMALLOC_MARK and LOG_CHANGED lp_load_ex: refreshing parameters Initialising global

Greetings, I installed a squid 3.1.10.i686 squid to a centos 6.2i686. The proxy is working fine with the default config. After I decided to use it as a transparent proxy, I added two lines to config: http_proxy 10.0.5.1:3128 transparent, always_direct allow all http_port 10.0.5.1:3128 transparent # # Recommended minimum configuration: # acl manager proto cache_object #acl localhost src

check out sslbump documentation: http://wiki.squid-cache.org/Features/SslBump -- Eero 2016-02-04 15:24 GMT+02:00 C. L. Martinez <carlopmart at gmail.com>: > Hi all, > > I am trying to configure squid as a interception HTTPS proxy under CentOS > 7. At every https request, I am receiving a certificate error. > > My current config for squid is: > > # My localnet

On 04/02/2016 13:24, C. L. Martinez wrote: > Hi all, > > I am trying to configure squid as a interception HTTPS proxy under CentOS 7. At every https request, I am receiving a certificate error. > > My current config for squid is: > > # My localnet > acl localnet src 172.22.55.0/28 > acl localnet src 172.22.58.0/29 > > acl SSL_ports port 443 > acl Safe_ports

2015-03-06 12:29 GMT-06:00 Niki Kovacs <info at microlinux.fr>: > > I recently migrated my office's server from Slackware64 14.1 to CentOS 7. > Right now I'm in the process of configuring the Squid web proxy. I edited > the default /etc/squid/squid.conf, and here's what I have so far: > > --8<-------------------------------------------------- > #

Hello what is the essential difference between the default squid package and this squid34 package, as I have problems using this squid34 package for FTP connections; there are no shown icons, when going to e.g. ftp://ftp.adobe.com/ when I tell the browser to show the image then I get this squid generated message ... the same config /etc/squid/squid.conf works with the default squid package

Hello, I have a problem here with: [root at ablprx01 squid]# cat /etc/*release CentOS release 5.2 (Final) [root at ablprx01 squid]# rpm -qa|grep -i squid squid-2.6.STABLE6-5.el5_1.3 The web proxy process (used by 300-400 users) seems to run ok: [root at ablprx01 squid]# ps uawwwx|grep squid root 2304 0.0 0.0 7792 1268 ? Ss 08:45 0:00 squid -D squid 3082 27.7 0.9

hello, my name is Denny. I am new in this list. I am trying use multiple uplinks as describe in the lartc documentation (http://lartc.org/howto/lartc.rpdb.multiple-links.html) with squid transparent proxy in my gateway server. let me draw the configuration : /----------------- -----DSL1-----| \ |Transparent proxy |----Local network -----DSL2-----|

Hello, I've got a centos5 box that is now behind a what was transparent squid proxy. The proxy now has it's own dedicated ip and uses proxy basic authentication. I've got a firewall that redirects all outgoing port 80 traffic to that ip so anyone wishing access goes proxied. The problem is yum on my centos5 can't retrieve the .xml files for the various yum repositories. In

ive got a config thats client -> server ->Dansguardian->Squid -> onward adn I want to transparently redirect web traffic to DG/Squid Not sure where the problem lies - hoping you guys can help me and at least tell me that its NOT my shorewall config heres the configs When I point a browser straight at 3128 or 3129 I get web pages back and the appropriate stuff in the logs . I get a

On 03/09/2018 05:18 AM, Nicolas Kovacs wrote: > Do allow this > access for now by executing: > # ausearch -c 'ssl_crtd' --raw | audit2allow -M my-sslcrtd > # semodule -i my-sslcrtd.pp > > Unfortunately the suggested solution doesn't work Start by running "ausearch -c 'ssl_crtd' --raw" by itself.? Try to determine whether or not all of the affected

Hi Friends, Same question has been asked on the Squid mailing list but so far no reply on the mailing list so posting it here also. We are trying to cache some files from apple.com like .dmg, .pkg, .ipa etc.. so that local clients can fetch the data from the cache. The problem we are facing is that we have download restrictions for every client to 25 MB during work hours except for a particular

Hi, I've installed Asterisk 1.2.13, and it works ok, but I have some voip clients behind a squid proxy server, and this clients can't connect to the Asterisk server. I added the access lists which permit the voip ports through the proxy, but the clients can't connect. This access lists in squid.conf are: acl safe_ports port 5060 acl safe_ports port 4569 acl

I'm having issues getting squid to send traffic through a specific upstream gateway. I need for a MS WSUS server and a Symantec Endpoint Protection Manager to get through a squid proxy to get out to Microsoft and Symantec respectively to get MS patches and Symantec DAT files. The traffic needs to go through the squid proxy, through a firewall, and through an upstream McAfee gateway

Am 05.03.2018 um 13:04 schrieb Nicolas Kovacs <info at microlinux.fr>: > > Le 28/02/2018 ? 22:23, Nicolas Kovacs a ?crit : >> So far, I've only been able to filter HTTP. >> >> Do any of you do transparent HTTPS filtering ? Any suggestions, >> advice, caveats, do's and don'ts ? > > After a week of trial and error, transparent HTTPS filtering

Hi , I am now running squid with ncsa_auth. I have bound ip addresses to usernames. So users now can access Internet from their ips. Now I want a few users to prevent from accessing all the sites. But Instead, I want them to allow to access a few sites scuh as google.com,cnn.com, bbc.com. I want to limit in that way. I have wriiten below rules. But those users still can access all the sites.

Hi List, I want to bind an ip address to a username with squid by using squid password file. I am using ncsa_auth programme. Below are line that I have added to squid.conf file. auth_param basic program /usr/lib/squid/ncsa_auth /etc/squid/squid_passwd auth_param basic children 5 auth_param basic realm Squid proxy-caching web server auth_param basic credentialsttl 2 hours auth_param basic

while setting up a squid module i came across a problem trying to use a template of "squid.conf". the following text in "squid.conf" raises an error from puppet, without this text the template works. refresh_pattern ^ftp: 1440 20% 10080 refresh_pattern ^gopher: 1440 0% 1440 refresh_pattern . 0 20% 4320