Re: [squid-users] HTTPS in Squid 2.4, ACCEPT and DENY

From: Henrik Nordstrom <hno@dont-contact.us>
Date: Tue, 23 Oct 2001 18:16:49 +0200

You can deny tunneling to www.domain.com port 443, but you cannot
explicilty deny the URL. The actual URL is never seen by Squid, only the
hostname and port.

acl denied_tunnel dst www.domain.com
http_access deny CONNECT denied_tunnel

Regards
Henrik Nordström
Squid Hacker

Alejandro Gómez wrote:
>
> Accept or deny URL's for example (https://www.domain.com)
>
> ----- Original Message -----
> From: "Henrik Nordstrom" <hno@marasystems.com>
> To: "Alejandro Gómez" <alejandro@nixus.cl>
> Cc: <squid-users@squid-cache.org>
> Sent: Monday, October 22, 2001 9:43 PM
> Subject: Re: [squid-users] HTTPS in Squid 2.4, ACCEPT and DENY
>
> > What rules? No Squid version to date knows about https.
> >
> > The only "https" relevant rules is the ones relating to the CONNECT
> > tunnel method and common SSL ports. These rules should ALWAYS be
> > activated.
> >
> > Regards
> > Henrik Nordström
> > Squid Hacker
> >
> >
> > Alejandro Gómez wrote:
> > >
> > > Should I apply the ACCEPT and DENY rules for the HTTPS protocol in the
> Squid
> > > 2.4?
> > >
> > > Thanks
Received on Tue Oct 23 2001 - 10:20:14 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:03:04 MST