Search squid archive

Re: Need acl to block logs of https denied status codes.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On 2/09/2012 1:27 a.m., Nil Nik wrote:

I am using squid version squid-3.1.9-20101129

Please upgrade. There are four security vulnerabilities in that Squid.

I don't want access logs for http response status code ( 400-404 500 502 503).

Status received from the server, or status sent to the client? these are not the same thing.

The ACL matches status of replies sent to the client. I was asking for log lines to see if the numbers you are worried about were those client status, or if they were traces of the server status. I advise upgrading your Squid, current version is 3.2.1, and if this is a bug it is very likely to have been fixed by now - the logging behaviour went through a small review earlier this year.

Amos


Thanks

> Date: Sun, 12 Aug 2012 18:42:54 +1200
> From: squid3@xxxxxxxxxxxxx
> To: squid-users@xxxxxxxxxxxxxxx
> Subject: Re: Need acl to block logs of https denied status codes.
>
> On 12/08/2012 3:19 p.m., Nil Nik wrote:
> > Hello,
> >
> > I have to stop logging of status code 400-404 500 502 503.
> >
> > I have used following acl:
> >
> > acl denied_status http_status 400-404 500 502 503
> > log_access deny denied_status
> >
> > Its not working for https logs. Please suggest me.
>
> Squid does not log HTTPS any different to HTTP.
>
> What *exactly* is showing up that you want to not log? and what Squid
> version is this?
>
> Amos



[Index of Archives]     [Linux Audio Users]     [Samba]     [Big List of Linux Books]     [Linux USB]     [Yosemite News]

  Powered by Linux