On 2/09/2012 1:27 a.m., Nil Nik wrote:
I am using squid version squid-3.1.9-20101129
Please upgrade. There are four security vulnerabilities in that Squid.
I don't want access logs for http response status code ( 400-404 500
502 503).
Status received from the server, or status sent to the client? these are
not the same thing.
The ACL matches status of replies sent to the client. I was asking for
log lines to see if the numbers you are worried about were those client
status, or if they were traces of the server status. I advise upgrading
your Squid, current version is 3.2.1, and if this is a bug it is very
likely to have been fixed by now - the logging behaviour went through a
small review earlier this year.
Amos
Thanks
> Date: Sun, 12 Aug 2012 18:42:54 +1200
> From: squid3@xxxxxxxxxxxxx
> To: squid-users@xxxxxxxxxxxxxxx
> Subject: Re: Need acl to block logs of https denied
status codes.
>
> On 12/08/2012 3:19 p.m., Nil Nik wrote:
> > Hello,
> >
> > I have to stop logging of status code 400-404 500 502 503.
> >
> > I have used following acl:
> >
> > acl denied_status http_status 400-404 500 502 503
> > log_access deny denied_status
> >
> > Its not working for https logs. Please suggest me.
>
> Squid does not log HTTPS any different to HTTP.
>
> What *exactly* is showing up that you want to not log? and what Squid
> version is this?
>
> Amos