Search squid archive

Squid 3.1.12.2 beta is available

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

The Squid HTTP Proxy team is very pleased to announce the
availability of the Squid-3.1.12.2 beta release!
This release was expected to be a stable one. However due to the size of changes needed to support the recent GCC versions and gold linker it has been left at stable until those changes can be confirmed clean of regressions.
This release also brings several important bug fixes for the SSL bump feature. These affect all releases using ssl-bump.
* Bug 3209: Leaking decrypted information to cache_peers. From this release onwards it will not be permitted blindly. The security audit of ssl-bump is ongoing so if you have any need for this behaviour please present your requirement case to the squid-dev mailing list for discussion.
* Bug 3205: SSL-Bump starts and hangs. A regression raised when correcting the CONNECT status handling.
* Support for "slow" ACLs in the ssl_bump access control. Those requiring remote information lookups. ie DNS, IDENT, or external ACLs.
* Fixed HTTP redirection and auth handling of CONNECT requests. SSL is only bumped if the request is to be tunneled by this Squid.
There is one outstanding major SSL bug (#3232) to be aware of. This is a build issue between the OpenSSL library code and recent GCC strict compiler warnings. It only appears when building the ssl-crt feature. 


Some other bugs also go fixed:

 * Bug #3215: Malformed IPv6 DNS reverse lookup
 * Bug #3122: Unknown WCCPv2 Packet (6) from non-Cisco routers.
 * Bug #3226: Tags from external ACLs do not correctly expire

See the ChangeLog for the list of other minor changes in this release.
All users of the ssl-bump feature are urged to upgrade to this release or a later one as soon as possible. 


Please refer to the release notes at
http://www.squid-cache.org/Versions/v3/3.1/RELEASENOTES.html
when you are ready to make the switch to Squid-3.1.

Upgrade tip:
"squid -k parse" is starting to display even more useful hints about squid.conf changes. 


This new release can be downloaded from our HTTP or FTP servers

      http://www.squid-cache.org/Versions/v3/3.1/
      ftp://ftp.squid-cache.org/pub/squid/
      ftp://ftp.squid-cache.org/pub/archive/3.1/

or the mirrors. For a list of mirror sites see

      http://www.squid-cache.org/Download/http-mirrors.dyn
      http://www.squid-cache.org/Download/mirrors.dyn

If you encounter any issues with this release please file a bug report.
      http://bugs.squid-cache.org/


Amos Jeffries
[Index of Archives]     [Linux Audio Users]     [Samba]     [Big List of Linux Books]     [Linux USB]     [Yosemite News]

  Powered by Linux