The Squid HTTP Proxy team is very pleased to announce the
availability of the Squid-3.1.12.1 beta release!
This release introduces to the 3.1 series the Dynamic SSL Certificate
Generation feature which was developed in the 3.2 series as support for
the SSL Bump feature.
This feature patch has a relatively long history of successful private
testing. The feature itself has a long history of portability testing in
3.2. This release is labeled as a beta simply due to the large number of
changes needed in 3.1 to integrate it.
Also fixed in this release is one URL processing error which enables
trusted clients to crash the Squid service with specially crafted
requests. Most client agents contain protection against external sources
use of these URLs which greatly limits its security impact. However
there is some vulnerability to specially crafted requests from internal
malicious software.
See the ChangeLog for the list of other minor changes in this release.
All users of earlier Squid-3 are encouraged to try out this release.
Please refer to the release notes at
http://www.squid-cache.org/Versions/v3/3.1/RELEASENOTES.html
when you are ready to make the switch to Squid-3.1.
Upgrade tip:
"squid -k parse" is starting to display even more useful hints about
squid.conf changes.
This new release can be downloaded from our HTTP or FTP servers
http://www.squid-cache.org/Versions/v3/3.1/
ftp://ftp.squid-cache.org/pub/squid/
ftp://ftp.squid-cache.org/pub/archive/3.1/
or the mirrors. For a list of mirror sites see
http://www.squid-cache.org/Download/http-mirrors.dyn
http://www.squid-cache.org/Download/mirrors.dyn
If you encounter any issues with this release please file a bug report.
http://bugs.squid-cache.org/
Amos Jeffries
