Arun Shrimali wrote:
Dear All, Recently I have installed FC9 and squid 3.0 STABLE 2.0 (Which has installed along with that). I was trying using NCSA authentication. After a day long try I was unable to setup NCSA auth. At the end through googeling I found that STABLE 2 has the bug in auth. I updated squid to 3.0 STABLE 7 Authentication is working fine, "deny all" is not working. When I add acl all src 0.0.0.0/0.0.0.0 it gives following error 2009/02/10 11:35:21| Processing Configuration File: /etc/squid/squid.conf (depth 0) 2009/02/10 11:35:21| WARNING: '0.0.0.0/0.0.0.0' is a subnetwork of '0.0.0.0/0.0.0.0' 2009/02/10 11:35:21| WARNING: because of this '0.0.0.0/0.0.0.0' is ignored to keep splay tree searching predictable 2009/02/10 11:35:21| WARNING: You should probably remove '0.0.0.0/0.0.0.0' from the ACL named 'all' 2009/02/10 11:35:21| Initializing https proxy context through google I found that "src all" is now inbuilt, but I could not restrict the users from surfing some sites through conditions. Can some body help me. Arun
Probably. "deny all" does work. Please display your configured access lines and we'll audit them.
PS: please also be aware of: http://www.squid-cache.org/Advisories/SQUID-2009_1.txt Amos -- Please be using Current Stable Squid 2.7.STABLE6 or 3.0.STABLE13 Current Beta Squid 3.1.0.5
