Gentlemen
When I set my browser proxy does not display the images "CAPTCHA", even
releasing my ip by proxy remains the same.
When put P2P firewall on my machine works in the same browser, so I
believe it is a problem in squid.
Below the contents of acess.log:
1384173759.292 833 10.21.100.195 TCP_MISS/302 647 GET
http://www.bj2.me/ - DIRECT/190.93.254.184 text/html
1384173759.570 269 10.21.100.195 TCP_MISS/200 1609 GET
http://www.bj2.me/login.php - DIRECT/190.93.254.184 text/html
1384173760.014 382 10.21.100.195 TCP_MISS/200 12633 GET
http://www.bj2.me/functions/simple-php-captcha.php? -
DIRECT/190.93.254.184 image/png
Contents squid.conf file:
#------------------------------------------------------------------------------
# Authentication
#
-----------------------------------------------------------------------------
auth_param basic program /usr/lib64/squid/squid_ldap_auth -R -b
"dc=XXXXXXX" -D "cn=ldapuser,cn=Users,dc=XXXXXXX" -w "XXXXXXX" -f
sAMAccountName=%s -h 10.X.X.X
auth_param basic children 5
auth_param basic realm Web-Proxy
auth_param basic credentialsttl 1 minute
external_acl_type InetGroup %LOGIN /usr/lib64/squid/squid_ldap_auth -R
-b "dc=XXXXXXX" -D "cn=ldapuser,cn=Users,dc=XXXXXXX" -w "qwerty123" -f
"(&(objectclass=person)(sAMAccountName=%v)(memberof=cn=%a,cn=Users,dc=XXXXXXX))"
-h 10.21.0.7
acl ldap-auth proxy_auth REQUIRED
#------------------------------------------------------------------------------
# Groups
#
-----------------------------------------------------------------------------
acl WebRestricted external InetGroup NT-WebRestricted
acl WebFull external InetGroup NT-WebFull
acl WebSNRestricted external InetGroup NT-WebSNRestricted
acl WebLimited external InetGroup NT-WebLimited
acl WebPosProducao external InetGroup NT-WebPosProducao
acl WebBlockAll external InetGroup NT-WebBlockAll
#-------------------------------------------------------------------------------
# Lock and release groups
#-------------------------------------------------------------------------------
acl msn_http url_regex -i "/etc/squid/msn.txt"
##--http_access deny WebRestricted msn_http
http_access deny WebSNRestricted msn_http
acl tlmk dstdomain -i "/etc/squid/liberados_tlmk.txt"
http_access allow WebLimited tlmk
acl snblocked url_regex -i "/etc/squid/bloqueio_social_networks.txt"
http_access deny WebSNRestricted snblocked
http_access deny WebLimited snblocked
#--acl snblocked_PosProducao url_regex -i "/etc/squid/redes_sociais.txt"
#--http_access deny WebPosProducao snblocked_PosProducao
acl proibidos dstdomain -i "/etc/squid/proibidos.txt"
http_access allow WebRestricted proibidos
http_access deny WebSNRestricted proibidos
http_access deny WebPosProducao proibidos
acl liberados dstdomain -i "/etc/squid/liberados.txt"
http_access allow WebRestricted liberados
http_access allow WebSNRestricted liberados
#http_access allow WebPosProducao liberados
acl urls url_regex -i "/etc/squid/urls.txt"
http_access allow WebRestricted urls
http_access deny WebSNRestricted urls
http_access deny WebPosProducao urls
acl extensoes urlpath_regex -i "/etc/squid/extensoes.txt"
#--http_access allow WebRestricted extensoes
http_access deny WebSNRestricted extensoes
http_access deny WebPosProducao extensoes
http_access allow WebRestricted
http_access allow WebSNRestricted
http_access allow WebFull
http_access allow WebPosProducao
http_access deny WebBlockAll
#-------------------------------------------------------------------------------
# Minimal Configuration
#-------------------------------------------------------------------------------
acl all src all
#acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443
acl Radio_ports port 7000
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 2095 # Webmail Madrugada com Deus
acl CONNECT method CONNECT
#####--http_access deny CONNECT !SSL_ports !Radio_ports
http_access deny CONNECT !SSL_ports
http_access allow Safe_ports
http_access allow localhost
http_access deny all
icp_access allow all
cache_store_log none
cache_access_log /logs/access.log
visible_hostname 2111-px01
http_port 3128
hierarchy_stoplist cgi-bin ?
cache_mem 1276 MB
#-------------------------------------------------------------------------------
# Opcoes de tamanho do cache
#-------------------------------------------------------------------------------
cache_dir diskd /cache 61440 16 256 Q1=64 Q2=72
logfile_rotate 1
acl QUERY urlpath_regex cgi-bin \?
cache deny QUERY
#Suggested default:
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern -i \.(gif|png|jpg|jpeg|ico)$ 10080 90% 43200
override-expire ignore-no-cache ignore-no-store ignore-private
refresh_pattern -i \.(iso|avi|wav|mp3|mp4|mpeg|swf|flv|x-flv)$ 43200 90%
432000 override-expire ignore-no-cache ignore-no-store ignore-private
refresh_pattern -i \.(deb|rpm|exe|zip|tar|tgz|ram|rar|bin|ppt|doc|tiff)$
10080 90% 43200 override-expire ignore-no-cache ignore-no-store
ignore-private
refresh_pattern -i \.index.(html|htm)$ 0 40% 10080
refresh_pattern -i \.(html|htm|css|js)$ 1440 40% 40320
refresh_pattern . 0 40% 40320
#-------------------------------------------------------------------------------
# Opcoes do HTTP
#-------------------------------------------------------------------------------
acl apache rep_header Server ^Apache
#broken_vary_encoding allow apache
#-------------------------------------------------------------------------------
# Idioma
#-------------------------------------------------------------------------------
error_directory /usr/share/squid/errors/pt-br/
#-------------------------------------------------------------------------------
# Diretorios do cache
#-------------------------------------------------------------------------------
cachemgr_passwd secret shutdown
cachemgr_passwd acqwp info stats/objects
cachemgr_passwd disable all
coredump_dir /var/spool/squid
coredump_dir /usr/local/squid/var/cache
Any idea?
Thanks!
Received on Mon Nov 11 2013 - 13:22:22 MST
This archive was generated by hypermail 2.2.0 : Tue Nov 12 2013 - 12:00:06 MST