[squid-users] Squid 3 + I-CAP + Clamav - Firefox does not Intercept properly , IE does. from Nigel on 2009-09-15 (squid-users)

From: Nigel <n.kilner_at_kilner-vacuum-lifting.com>
Date: Tue, 15 Sep 2009 15:49:47 +0100

Hi,

I have just compiled and installed squid 3.0 STABLE 19 with I-cap
(c_icap-060708rc3) & Clamav 0.95.2 on my suse 9.3 server.

The squid installation is working for http requests using Internet
Explorer but Firefox 3.5 does not intercept all files. e.g

The four http linked Eicar files at
http://www.eicar.org/anti_virus_test_file.htm are all intercepted when
using IE. However Firefox only intercepts the two 'zip' files. the com
and txt file can be accessed.

In addition, both IE & Firefox allow access to the https linked files.

here are my squid compile options:
'--enable-linux-netfilter' '--prefix=/usr' '--sysconfdir=/etc/squid'
'--bindir=/usr/sbin' '--sbindir=/usr/sbin' '--localstatedir=/var'
'--libexecdir=/usr/local' '--datadir=/usr/share/squid' '--with-dl'
'--disable-option-checking' '--enable-snmp' '--enable-carp'
'--enable-useragent-log' '--enable-auth=basic digest ntlm'
'--enable-basic-auth-helpers=LDAP MSNT NCSA PAM SMB YP getpwnam
multi-domain-NTLM' '--enable-ntlm-auth-helpers=SMB no_check'
'--enable-digest-auth-helpers=password'
'--enable-external-acl-helpers=ip_user ldap_group unix _group
wbinfo_group' '--enable-ntlm-fail-open' '--enable-referer-log'
'--enable-arp-acl' '--enable-htcp' '--enable-underscores'
'--enable-stacktraces' '--enable-delay-pools' '--enable-ssl'
'--with-openssl=/usr/local/ssl' '--enable-cache-digests'
'--enable-storeio=aufs,ufs,diskd,null' '--enable-icap-client'
'--enable-removal-policies=heap,lru'
'--with-samba-sources=/usr/include/samba' '--enable-x-accelerator-vary'

Has anyone seen similar behaviour? Where should I start to diagnose this?

Nigel Kilner

______________________________________________________________________

Kilner Vacuumation Co. Ltd. Tel. +44 1246 416441 Fax. +44 1246 290573
______________________________________________________________________

This message has been scanned for dangerous content by F-prot (MailScanner)
and is believed to be clean.

All information contained in this email is confidential and may
be used by the intended recipient only.

Received on Tue Sep 15 2009 - 14:50:33 MDT

This archive was generated by hypermail 2.2.0 : Wed Sep 16 2009 - 12:00:03 MDT