[squid-users] FW: help change cache dir

TarotApprentice tarotapprentice at yahoo.com
Sat Dec 12 21:57:17 UTC 2015


The last time I setup my cache dir I did the following (in Debian):

cd /var/spool
sudo mkdir squid
sudo chown proxy:proxy squid
/usr/sbin/squid -z

Where proxy is the username for squid.

> On 13 Dec 2015, at 4:59 AM, Lee Brown <leeb at ratnaling.org> wrote:
> 
> 
>> On Sat, Dec 12, 2015 at 5:39 AM, juancho Alfonso <juanchorevolution at hotmail.com> wrote:
>> 
>> the user is
>> squid
>> if i initialite by defaul it works
>> in var/spool/squid
>> and works 
>> user squid squid
>> but i want add dir 
>> var/spool/squid
>> or 
>> XDISKEXTERNAL/something/squid
>> 
>> but dont work 
>> permission denied(13)
>> 
>> 
>> try chmod -R squid.squid cache
>> or
>> chmod -R 777 cache
>> 
>> 
>> image show config 
>> http://es.zimagez.com/zimage/captura398.php
>> 
>> 
>> 
>> To: squid-users at lists.squid-cache.org
>> From: yvoinov at gmail.com
>> Date: Fri, 11 Dec 2015 02:38:56 +0600
>> Subject: Re: [squid-users] help change cache dir
>> 
>> 
>> -----BEGIN PGP SIGNED MESSAGE----- 
>> Hash: SHA256 
>>  
>> Cache dir owner must be user which is specified in squid.conf:
>> 
>> http://i.imgur.com/AbYkE8M.png
>> 
>> 
>> 
>> 11.12.15 2:27, juancho Alfonso пишет:
>> > Hey thereI have installed
>>       CentOS squid in 7I want to change the cache directory
>> 
>>       > appears when I try to initialize
>> 
>>       > Creating Swap Directories
>> 
>>       > FATAL: Failed to make directory swap mydirectory / cache /
>>       00:
>> 
>>       >      (13) Permission denied
>> 
>>       > directory is an external drive or a folder on the same
>>       partitionand I granted permissions
>> 
>>       > chmod 777 cacheorchmod cache squid.squid
>> 
>>       > no worksI need help to put more capacity more directories
>> 
>>       >
>> 
>>       >
>> 
>>       >
>> 
>>       > the squid.conf
>> 
>>       > ## Recommended minimum configuration:#
>> 
>>       > # Example rule allowing access from your local networks.#
>>       Adapt to list your (internal) IP networks from where browsing#
>>       should be allowedacl localnet src 10.0.0.0/8 # RFC1918 possible
>>       internal networkacl localnet src 172.16.0.0/12 # RFC1918 possible
>>       internal networkacl localnet src 192.168.0.0/16 # RFC1918 possible
>>       internal networkacl localnet src fc00::/7 # RFC 4193 local private
>>       network rangeacl localnet src fe80::/10 # RFC 4291 link-local
>>       (directly plugged) machines
>> 
>>       > acl SSL_ports port 443acl Safe_ports port 80 # httpacl
>>       Safe_ports port 21 # ftpacl Safe_ports port 443 # httpsacl
>>       Safe_ports port 70 # gopheracl Safe_ports port 210 # waisacl
>>       Safe_ports port 1025-65535 # unregistered portsacl Safe_ports port
>>       280 # http-mgmtacl Safe_ports port 488 # gss-httpacl Safe_ports
>>       port 591 # filemakeracl Safe_ports port 777 # multiling httpacl
>>       CONNECT method CONNECTacl PAGINASBLOQUEADAS url_regex -i porno
>>       abcde
>> 
>>       > ## Recommended minimum Access Permission configuration:##
>>       Deny requests to certain unsafe portshttp_access deny
>>       PAGINASBLOQUEADAS
>> 
>>       > # Deny CONNECT to other than secure SSL portshttp_access deny
>>       !Safe_ports
>> 
>>       > # Only allow cachemgr access from localhosthttp_access deny
>>       CONNECT !SSL_portshttp_access allow localhost manager
>> 
>>       > # We strongly recommend the following be uncommented to
>>       protect innocent# web applications running on the proxy server who
>>       think the only# one who can access services on "localhost" is a
>>       local user#http_access deny to_localhost
>> 
>>       > ## INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR
>>       CLIENTS#
>> 
>>       > # Example rule allowing access from your local networks.#
>>       Adapt localnet in the ACL section to list your (internal) IP
>>       networks# from where browsing should be allowedhttp_access allow
>>       managerhttp_access allow localnet
>> 
>>       > # And finally deny all other access to this proxyhttp_access
>>       allow localhosthttp_access allow all
>> 
>>       > # Squid normally listens to port 3128http_port 3128
>>       transparent
>> 
>>       > # Uncomment and adjust the following to add a disk cache
>>       directory.
>> 
>>       > # Leave coredumps in the first cache dircoredump_dir
>>       /var/spool/squid
>> 
>>       > ## Add any of your own refresh_pattern entries above
>>       these.#refresh_pattern ^ftp:        1440    20%   
>>       10080refresh_pattern ^gopher:    1440    0%    1440refresh_pattern
>>       -i (/cgi-bin/|\?) 0    0%    0refresh_pattern .        0    20%   
>>       4320
>> 
>>       >
>> 
>>       >
>> 
>>       > #juancache_mem 16384 MB#cache_replacement_policy heap LFUDA
>>       #El parámetro maximum_object_size define el tamaño máximo de los
>>       objetos que serán almacenados en el cache de
>>       discomaximum_object_size 200 MBcache_swap_low 90cache_swap_high
>>       95#correo del administrador del cachecache_mgr
>>       ingenieria at conexiondigital.cocachemgr_passwd cache all
>> 
>>       > #this workcache_dir aufs /var/spool/squid 40000 16 256 #this
>>       no workcache_dir aufs /var/spool/squid2 40000 16 256 
>> 
>>       > cache_effective_user squidcache_effective_group squid
>> 
>>       >
>> 
>>       >
>> 
>>       >
>> 
>>       > Juan Ernesto Alfonsoestudiante ingeniería
>>       electrónicauniversidad distrital Francisco José de Caldas
>> 
>>       > JUANCHO
>> 
>>       >  NEMESIS 
>> 
>>       > KRAVEN
>> 
>>       >
>> 
>>       > " si un día tienes que elegir entre el mundo y el amor...
>> 
>>       > recuerda: 
>> 
>>       >
>> 
>>       > si eliges el mundo quedarás sin amor, 
>> 
>>       >
>> 
>>       > pero si eliges el amor, con él conquistarás al mundo" 
>> 
>>       >
>> 
>>       > albert einstein 
>> 
>>       >
>> 
>>       >
>> 
>>       >
>> 
>>       >                             
>> 
>>       >
>> 
>>       >
>> 
>>       > _______________________________________________
>> 
>>       > squid-users mailing list
>> 
>>       > squid-users at lists.squid-cache.org
>> 
>>       > http://lists.squid-cache.org/listinfo/squid-users
>> 
>> -----BEGIN PGP SIGNATURE----- 
>> Version: GnuPG v2 
>>  
>> iQEcBAEBCAAGBQJWaeLfAAoJENNXIZxhPexGV6wH/0dy5nyvKJBsB8cWnXpyU661 
>> 98aA96FF+8QlQW+dkAKyNJ/dNtjv/VyGbglqyDDoaqwq2+Uef3dZauwyIQcwoRxZ 
>> TVhUu47v+cX1F6Ka+JWxvw7hsIumoEvrXQQxdBoZUAqdXDRyvdK/VeraGyV1y2LD 
>> qYQB/vIV7u/PGgiyzE5vtZ/aHYnAsiLQxMD4a3SSvDnSNx9fklhRGyTljcNuVH5n 
>> NAXeXE3JD9+NW9rFY3/49TWNGJMNzH9v9RyQPG5uWkov/hAR1fXiRW7a/TD6pZ6V
>> /gb54gbAQcdCMXwsly7XQTswoG6OKGLuLl6+mLbLz3hgBpDfZDNAQMpKM4npiSU= 
>> =ayi0 
>> -----END PGP SIGNATURE----- 
>> 
>> 
>> _______________________________________________ squid-users mailing list squid-users at lists.squid-cache.org http://lists.squid-cache.org/listinfo/squid-users
>> 
>> _______________________________________________
>> squid-users mailing list
>> squid-users at lists.squid-cache.org
>> http://lists.squid-cache.org/listinfo/squid-users
> 
> 
> As Rafael said,
> 
> Check your SELinux settings.
> 
> 
> _______________________________________________
> squid-users mailing list
> squid-users at lists.squid-cache.org
> http://lists.squid-cache.org/listinfo/squid-users
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20151213/c2e8b8f1/attachment-0001.html>


More information about the squid-users mailing list