If a user gets TCP_DENIED/403 because of a blacklist it often is a bad job to find out which entry of the blacklist caused this error. Because squid knows this entry it should log it into cache.log or somewhere else ("TCP_DENIED/403/http://www.badsite.com"). I guess for a specialist this is quite easy to code, isnt it? It would be very nice if I could see this loggin in S2.5 Stable 10 ;-) Mit freundlichem Gruß/Yours sincerely Werner Rost GMT-FIR - Netzwerk ZF Boge Elastmetall GmbH Friesdorfer Str. 175, 53175 Bonn, Deutschland/Germany Telefon/Phone +49 228 3825 - 420 Telefax/Fax +49 228 3825 - 398 werner.rost@xxxxxx