|
Hello. 1. this question was asked before, but not yet resolved: http://www.squid-cache.org/mail-archive/squid-users/200701/0000.html 2. use case: the following url goes though double redirect, both times not providing "Expires:" header, which results in repeated TCP_MISS/302 entries in the squid logs: 2020-Jan-03 17:45:14 125 192.168.1.106 TCP_MISS/302 565 GET https://archive.archlinux.org/repos/2020/01/01/community/os/x86_64/python-wheel-0.33.6-3-any.pkg.tar.xz - HIER_DIRECT/88.198.91.70 text/html 2020-Jan-03 17:45:14 82 192.168.1.106 TCP_MISS/302 461 GET https://archive.org/download/archlinux_pkg_python-wheel/python-wheel-0.33.6-3-any.pkg.tar.xz - HIER_DIRECT/207.241.224.2 text/html 2020-Jan-03 17:45:14 215 192.168.1.106 NONE/200 0 CONNECT ia803100.us.archive.org:443 - HIER_DIRECT/207.241.232.150 - 2020-Jan-03 17:45:14 1 192.168.1.106 TCP_HIT/200 38605 GET https://ia803100.us.archive.org/6/items/archlinux_pkg_python-wheel/python-wheel-0.33.6-3-any.pkg.tar.xz - HIER_NONE/- application/octet-stream 3. here are response details via curl: a) curl --head https://archive.archlinux.org/repos/2020/01/01/community/os/x86_64/python-wheel-0.33.6-3-any.pkg.tar.xz HTTP/2 302 curl --head https://archive.org/download/archlinux_pkg_python-wheel/python-wheel-0.33.6-3-any.pkg.tar.xz HTTP/1.1 302 Found 4. it seems that Strict-Transport-Security: max-age header is ignored here by squid 5. any attempt to use any of the refresh_pattern options also has no effect: http://www.squid-cache.org/Doc/config/refresh_pattern/ 6. full squid.conf is posted here: Question: how can one force the caching of 302 responses without the Expires header and with Strict-Transport-Security max-age header? Thank you. |
_______________________________________________ squid-users mailing list squid-users@xxxxxxxxxxxxxxxxxxxxx http://lists.squid-cache.org/listinfo/squid-users
