On 24.07.2012 14:20, Ming-Ching Tiew wrote:
> ----- Original Message -----
> From: Ming-Ching Tiew
>
>> The test is very repeated, ie when I 'make install' from
>> squid-3.2.0.12 it works but not
>> squid-3.2.018.
>
> I meant the tests were very repeatable, squid-3.2.0.12 works,
> squid-3.2.0.13 works.
> Squid-3.2.0.14 onwards ( tested squid-3.2.0.14, squid-3.2.0.15,
> squid-3.2.0.16,
> squid-3.2.0.18 ) all start giving problems.
>
> For squid-3.2.0.14, when I try to logon to yahoo mail, I get this
> thing below. Other
> versions seem to just hang until timeout. I am not trying to finger
> point at squid
> beta version, but I hope these tests will throw some lights to my
> problem with
> using squid in tproxy mode :-
One big change in 3.2.0.14 related to TPROXY traffic handling. A bug in
host_strict_verify was fixed, making the validation bypass properly when
the (default) non-strict was configured.
- check that this host_strict_verify directive is ABSENT from your
config file, or at very least set to OFF.
- check your cache.log for host forgery security alerts, or forwarding
loop warnings when these requests are being made.
- check your cache.log file for invalid request parsing messages. This
may require "debug_options ALL,1" to be configured.
Amos
Received on Tue Jul 24 2012 - 03:03:29 MDT
This archive was generated by hypermail 2.2.0 : Tue Jul 24 2012 - 12:00:02 MDT