Re: [squid-users] Need acl to block logs of https denied status codes.

On 2/09/2012 1:27 a.m., Nil Nik wrote:
>
> I am using squid version squid-3.1.9-20101129

Please upgrade. There are four security vulnerabilities in that Squid.

> I don't want access logs for http response status code ( 400-404 500
> 502 503).

Status received from the server, or status sent to the client? these are
not the same thing.

The ACL matches status of replies sent to the client. I was asking for
log lines to see if the numbers you are worried about were those client
status, or if they were traces of the server status. I advise upgrading
your Squid, current version is 3.2.1, and if this is a bug it is very
likely to have been fixed by now - the logging behaviour went through a
small review earlier this year.

Amos

>
> Thanks
>
> > Date: Sun, 12 Aug 2012 18:42:54 +1200
> > From: squid3_at_treenet.co.nz
> > To: squid-users_at_squid-cache.org
> > Subject: Re: [squid-users] Need acl to block logs of https denied
> status codes.
> >
> > On 12/08/2012 3:19 p.m., Nil Nik wrote:
> > > Hello,
> > >
> > > I have to stop logging of status code 400-404 500 502 503.
> > >
> > > I have used following acl:
> > >
> > > acl denied_status http_status 400-404 500 502 503
> > > log_access deny denied_status
> > >
> > > Its not working for https logs. Please suggest me.
> >
> > Squid does not log HTTPS any different to HTTP.
> >
> > What *exactly* is showing up that you want to not log? and what Squid
> > version is this?
> >
> > Amos
Received on Mon Sep 03 2012 - 09:11:26 MDT