[squid-dev] [PATCH] Fix 'miss_access' and 'cache' checks when no ACL rules matched

Eduard Bagdasaryan eduard.bagdasaryan at measurement-factory.com
Fri May 12 13:12:50 UTC 2017


On 12.05.2017 07:54, Amos Jeffries wrote:
> The other access lists which obviously treat non-allowed as denied are 
> very recent additions. So using them as a template to re-write 
> existing and widely used directives behaviour is not great. 

Frankly speaking, the "cache" directive behavior changed rather
recently (r14984), as I noted above.  Can we say that it became 'widely' 
used
since then? On the contrary, I suspect that this change broke (or eventually
will break) some existing installations.
I so, the only "miss_access" directive check change may
break some installations.  Should we make an exception for this single
directive or formalize the rules, making them identical for all directives?
Probably the latter would be better for long term.  We can postpone this 
change
of course, adding a warning message for admin, that
'dunno' or 'auth required' outcomes will be denied in future releases.


Eduard.


More information about the squid-dev mailing list