I have squid2.2.Stable3 on RedHat5.2 running with following rules:
1) valid source IP address,
2) User/Password authentication,
3) Access based on time of the day.
I have noticed that some smart users keep Yahoo pager page or PointCast
running, to get around authorized hours. Once a user is in, time restriction
is not checked again. Anyway around that?
My ACL stuff:
acl local-servers dstdomain local.com
acl SSL method CONNECT
acl CONNECT method CONNECT
acl GETPOST method GET POST
acl timerange time 06:00-20:30
acl SSL_ports port 443 563
acl Safe_ports port 80 21 443 563 70 210 1025-65535
acl Dangerous_ports port 7 9 19
acl password proxy_auth REQUIRED
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl validips src 192.128.8.200 192.128.8.210 192.128.8.214
http_access allow validips timerange password
http_access deny all
Another side issue, my Squid1.1.2x seemed to cache lot of stuff. My latest
squid seems to be going to parent more often. Just a feeling...
Is there a tool/script something that analyzes how 'good' my squid set-up is or
could be?
Thanks..
Received on Tue Jun 29 1999 - 13:03:07 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:47:03 MST