SHARE
TWEET

Untitled

a guest Jun 18th, 2017 506 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. squid start/running, process 3689
  2. user@user-desktop:~$ sudo service squid start
  3. squid start/running, process 3721
  4. user@user-desktop:~$ sudo grep group /etc/squid/squid.conf
  5. #       acl aclname urlgroup group1 ...
  6. #         # match against the urlgroup as indicated by redirectors
  7. #          urlgroup=    Default urlgroup to mark requests with (see
  8. #                       also acl urlgroup and url_rewrite_program)
  9. #                    Only useful when sending to a multicast group.
  10. #                    hosts, you must configure other group members as
  11. #                    is a member of a multicast group.  ICP queries will
  12. #                    Squid that ALL members of this multicast group have
  13. #                    to a multicast group when the requested object would
  14. #                    multicast group.
  15. #                    use 'login=user:password' if this is a personal/workgroup
  16. #       URL <SP> client_ip "/" fqdn <SP> user <SP> method <SP> urlgroup
  17. #       URL <SP> client_ip "/" fqdn <SP> user <SP> method <SP> urlgroup
  18. #       It can also return a "urlgroup" that can subsequently be matched
  19. #       in cache_peer_access and similar ACL driven rules. An urlgroup is
  20. #       returned by prefixing the returned URL with "!urlgroup!".
  21. #          location URL <SP> requested URL <SP> urlgroup <NL>
  22. #       cache_effective_group, Squid sets the GID to the effective
  23. #       user's default group ID (taken from the password file) and
  24. #       supplementary group list from the from groups membership of
  25. #  TAG: cache_effective_group
  26. #       the group memberships of the effective user then set this
  27. #       to the group (or GID) you want Squid to run as. When set
  28. #       all other group privileges of the effective user is ignored
  29. #       group.
  30. #  TAG: mcast_groups
  31. #       This tag specifies a list of multicast groups which your server
  32. #       receive replies from multicast group members.
  33. #       is already in use by another group of caches.
  34. #       Usage: mcast_groups 239.128.16.128 224.0.1.20
  35. #       By default, Squid doesn't listen on any multicast groups.
  36. user@user-desktop:~$ sudo grep user /etc/squid/squid.conf
  37. #       reads a line containing "username password" and replies "OK" or
  38. #       the basic proxy authentication scheme (part of the text the user
  39. #       will see when prompted their username and password).
  40. #       username:password pair is valid for - in other words how often the
  41. #       helper program is called for that user. Set this low to force
  42. #       also use the max_user_ip ACL in an http_access rule.
  43. #       Specifies if usernames are case sensitive. Most user databases are
  44. #       case insensitive allowing the same username to be spelled using both
  45. #       makes a big difference for user_max_ip ACL processing and similar.
  46. #       reads a line containing "username":"realm" and replies with the
  47. #       appropriate H(A1) value hex encoded or ERR if the user (or his H(A1)
  48. #       digest proxy authentication scheme (part of the text the user will see
  49. #       when prompted their username and password).
  50. #       counts, or just incrementing (off - for use when useragents generate
  51. #       The time period between garbage collection across the username cache.
  52. #       The time a user & their credentials stay in the logged in user cache
  53. #       since their last request. When the garbage interval passes, all user
  54. #       If you use proxy authentication and the 'max_user_ip' ACL, this
  55. #       associated with each user.  Use a small value (e.g., 60 seconds) if
  56. #       your users might change addresses quickly, as is the case with
  57. #         %LOGIN        Authenticated user login name
  58. #         %IDENT        Ident user name
  59. #         user=         The users name (login also understood)
  60. #         password=     The users password (for PROXYPASS login= cache_peer)
  61. #       acl aclname ident    username ...
  62. #       acl aclname proxy_auth [-i] username ...
  63. #         # list of valid usernames
  64. #         # use REQUIRED to accept any valid username.
  65. #         # needed during ACL checking the username is NOT logged
  66. #         # to check username/password combinations (see
  67. #       acl aclname max_user_ip [-s] number
  68. #         # This will be matched when the user attempts to log in from more
  69. #         # -s Squid will just annoy the user by "randomly" denying requests.
  70. #         # going through proxy farms, so a limit of 1 may cause user problems.
  71. #       acl aclname user_cert attribute values...
  72. #         # match against attributes in a user SSL certificate
  73. #         # match against attributes a users issuing CA SSL certificate
  74. #       acl aclname ext_user username ...
  75. #       acl aclname ext_user_regex [-i] pattern ...
  76. #         # string match on username returned by external acl helper
  77. #         # use REQUIRED to accept any non-null user name.
  78. # one who can access services on "localhost" is a local user
  79. #       for your main multi-user Unix boxes, but not for your Macs
  80. #       It can be used to prevent users from downloading very large files,
  81. #       user receives an error message that says "the request or reply
  82. #       ip's having multiple users.
  83. #       connections with, based on the username or source address
  84. #       based on the username or source address of the user making
  85. #                    login=user:password | PASS | *:password
  86. #                    userhash
  87. #                    use 'login=user:password' if this is a personal/workgroup
  88. #                    use 'login=PASS' if users must authenticate against
  89. #                    the users credentials as they are to the peer.
  90. #                    share the same user database as HTTP only allows for
  91. #                    Also be warned this will expose your users proxy
  92. #                    use 'login=*:password' to pass the username to the
  93. #                    domain, but it is still needed to identify each user.
  94. #                    information which is added to the username. This can
  95. #                    the login=username:password option above.
  96. #                    use 'userhash' to load-balance amongst a set of parents
  97. #                    based on the client proxy_auth or ident username.
  98. #                    available in /etc/ssl and users can set:
  99. #       authpriv, daemon, local0 .. local7 or user.
  100. #  TAG: useragent_log
  101. #       to the filename specified here.  By default useragent_log
  102. #       logging.  This protects your user's privacy.
  103. #  TAG: ftp_user
  104. #       reasonable for your domain, like wwwuser@somewhere.net
  105. #       request can be made on the behalf of a user in any domain,
  106. # ftp_user Squid@
  107. #       URL <SP> client_ip "/" fqdn <SP> user <SP> method <SP> urlgroup
  108. #       URL <SP> client_ip "/" fqdn <SP> user <SP> method <SP> urlgroup
  109. #       users may have access to pages they should not
  110. #       caches.  Impatient users may tie up file descriptors and
  111. #       When the user aborts a request, Squid will check the
  112. #       A user who attempts to send a request with a body larger
  113. #       (~10% in my experience), but allows users to actually get
  114. #       cannot tell if the user is using 5.5 or 5.5SP1, the behavior
  115. #       some fixed string. This replaces the old fake_user_agent
  116. #       users, you might be susceptible to denial-of-service by having
  117. #  TAG: cache_effective_user
  118. #       UID/GID to the user specified below.  The default is to change
  119. #       to UID to proxy.  If you define cache_effective_user, but not
  120. #       user's default group ID (taken from the password file) and
  121. #       cache_effective_user.
  122. # cache_effective_user proxy
  123. #       the group memberships of the effective user then set this
  124. #       all other group privileges of the effective user is ignored
  125. #       root the user starting Squid must be member of the specified
  126. #       According to some users, Cisco IOS 11.2 and earlier only
  127. #       deny:   The request is denied.  The user receives an "Invalid
  128. #       found not to preserve user session state across requests
  129. user@user-desktop:~$ sudo grep group /etc/squid/squid.conf
  130. #       acl aclname urlgroup group1 ...
  131. #         # match against the urlgroup as indicated by redirectors
  132. #          urlgroup=    Default urlgroup to mark requests with (see
  133. #                       also acl urlgroup and url_rewrite_program)
  134. #                    Only useful when sending to a multicast group.
  135. #                    hosts, you must configure other group members as
  136. #                    is a member of a multicast group.  ICP queries will
  137. #                    Squid that ALL members of this multicast group have
  138. #                    to a multicast group when the requested object would
  139. #                    multicast group.
  140. #                    use 'login=user:password' if this is a personal/workgroup
  141. #       URL <SP> client_ip "/" fqdn <SP> user <SP> method <SP> urlgroup
  142. #       URL <SP> client_ip "/" fqdn <SP> user <SP> method <SP> urlgroup
  143. #       It can also return a "urlgroup" that can subsequently be matched
  144. #       in cache_peer_access and similar ACL driven rules. An urlgroup is
  145. #       returned by prefixing the returned URL with "!urlgroup!".
  146. #          location URL <SP> requested URL <SP> urlgroup <NL>
  147. #       cache_effective_group, Squid sets the GID to the effective
  148. #       user's default group ID (taken from the password file) and
  149. #       supplementary group list from the from groups membership of
  150. #  TAG: cache_effective_group
  151. #       the group memberships of the effective user then set this
  152. #       to the group (or GID) you want Squid to run as. When set
  153. #       all other group privileges of the effective user is ignored
  154. #       group.
  155. #  TAG: mcast_groups
  156. #       This tag specifies a list of multicast groups which your server
  157. #       receive replies from multicast group members.
  158. #       is already in use by another group of caches.
  159. #       Usage: mcast_groups 239.128.16.128 224.0.1.20
  160. #       By default, Squid doesn't listen on any multicast groups.
  161. user@user-desktop:~$ user@user-desktop:~$ sudo grep group /etc/squid/squid.conf
  162. user@user-desktop:~$: command not found
  163. user@user-desktop:~$ #       acl aclname urlgroup group1 ...
  164. user@user-desktop:~$ #         # match against the urlgroup as indicated by redirectors
  165. user@user-desktop:~$ ^C
  166. user@user-desktop:~$
  167. user@user-desktop:~$ sudo grep user /etc/squid/squid.conf
  168. #       reads a line containing "username password" and replies "OK" or
  169. #       the basic proxy authentication scheme (part of the text the user
  170. #       will see when prompted their username and password).
  171. #       username:password pair is valid for - in other words how often the
  172. #       helper program is called for that user. Set this low to force
  173. #       also use the max_user_ip ACL in an http_access rule.
  174. #       Specifies if usernames are case sensitive. Most user databases are
  175. #       case insensitive allowing the same username to be spelled using both
  176. #       makes a big difference for user_max_ip ACL processing and similar.
  177. #       reads a line containing "username":"realm" and replies with the
  178. #       appropriate H(A1) value hex encoded or ERR if the user (or his H(A1)
  179. #       digest proxy authentication scheme (part of the text the user will see
  180. #       when prompted their username and password).
  181. #       counts, or just incrementing (off - for use when useragents generate
  182. #       The time period between garbage collection across the username cache.
  183. #       The time a user & their credentials stay in the logged in user cache
  184. #       since their last request. When the garbage interval passes, all user
  185. #       If you use proxy authentication and the 'max_user_ip' ACL, this
  186. #       associated with each user.  Use a small value (e.g., 60 seconds) if
  187. #       your users might change addresses quickly, as is the case with
  188. #         %LOGIN        Authenticated user login name
  189. #         %IDENT        Ident user name
  190. #         user=         The users name (login also understood)
  191. #         password=     The users password (for PROXYPASS login= cache_peer)
  192. #       acl aclname ident    username ...
  193. #       acl aclname proxy_auth [-i] username ...
  194. #         # list of valid usernames
  195. #         # use REQUIRED to accept any valid username.
  196. #         # needed during ACL checking the username is NOT logged
  197. #         # to check username/password combinations (see
  198. #       acl aclname max_user_ip [-s] number
  199. #         # This will be matched when the user attempts to log in from more
  200. #         # -s Squid will just annoy the user by "randomly" denying requests.
  201. #         # going through proxy farms, so a limit of 1 may cause user problems.
  202. #       acl aclname user_cert attribute values...
  203. #         # match against attributes in a user SSL certificate
  204. #         # match against attributes a users issuing CA SSL certificate
  205. #       acl aclname ext_user username ...
  206. #       acl aclname ext_user_regex [-i] pattern ...
  207. #         # string match on username returned by external acl helper
  208. #         # use REQUIRED to accept any non-null user name.
  209. # one who can access services on "localhost" is a local user
  210. #       for your main multi-user Unix boxes, but not for your Macs
  211. #       It can be used to prevent users from downloading very large files,
  212. #       user receives an error message that says "the request or reply
  213. #       ip's having multiple users.
  214. #       connections with, based on the username or source address
  215. #       based on the username or source address of the user making
  216. #                    login=user:password | PASS | *:password
  217. #                    userhash
  218. #                    use 'login=user:password' if this is a personal/workgroup
  219. #                    use 'login=PASS' if users must authenticate against
  220. #                    the users credentials as they are to the peer.
  221. #                    share the same user database as HTTP only allows for
  222. #                    Also be warned this will expose your users proxy
  223. #                    use 'login=*:password' to pass the username to the
  224. #                    domain, but it is still needed to identify each user.
  225. #                    information which is added to the username. This can
  226. #                    the login=username:password option above.
  227. #                    use 'userhash' to load-balance amongst a set of parents
  228. #                    based on the client proxy_auth or ident username.
  229. #                    available in /etc/ssl and users can set:
  230. #       authpriv, daemon, local0 .. local7 or user.
  231. #  TAG: useragent_log
  232. #       to the filename specified here.  By default useragent_log
  233. #       logging.  This protects your user's privacy.
  234. #  TAG: ftp_user
  235. #       reasonable for your domain, like wwwuser@somewhere.net
  236. #       request can be made on the behalf of a user in any domain,
  237. # ftp_user Squid@
  238. #       URL <SP> client_ip "/" fqdn <SP> user <SP> method <SP> urlgroup
  239. #       URL <SP> client_ip "/" fqdn <SP> user <SP> method <SP> urlgroup
  240. #       users may have access to pages they should not
  241. #       caches.  Impatient users may tie up file descriptors and
  242. #       When the user aborts a request, Squid will check the
  243. #       A user who attempts to send a request with a body larger
  244. #       (~10% in my experience), but allows users to actually get
  245. #       cannot tell if the user is using 5.5 or 5.5SP1, the behavior
  246. #       some fixed string. This replaces the old fake_user_agent
  247. #       users, you might be susceptible to denial-of-service by having
  248. #  TAG: cache_effective_user
  249. #       UID/GID to the user specified below.  The default is to change
  250. #       to UID to proxy.  If you define cache_effective_user, but not
  251. #       user's default group ID (taken from the password file) and
  252. #       cache_effective_user.
  253. # cache_effective_user proxy
  254. #       the group memberships of the effective user then set this
  255. #       all other group privileges of the effective user is ignored
  256. #       root the user starting Squid must be member of the specified
  257. #       According to some users, Cisco IOS 11.2 and earlier only
  258. #       deny:   The request is denied.  The user receives an "Invalid
  259. #       found not to preserve user session state across requests
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand
 
Top