[squid-users] showing clients ip on whos tried to download virus on squid 4

robert k Wild robertkwild at gmail.com
Sat Jan 4 01:13:49 UTC 2020

 hi all,

this is my config at the end of squid.conf

icap_enable on
icap_send_client_ip on
icap_send_client_username on
icap_client_username_header X-Authenticated-User
icap_service service_req reqmod_precache bypass=0 icap://
adaptation_access service_req allow all
icap_service service_resp respmod_precache bypass=0 icap://
adaptation_access service_resp allow all

it works great but when i go on the c-icap logs its just specifies this

Sat Jan  4 00:50:36 2020, 1610/782518016, squidclamav.c(908)
squidclamav_end_of_data_handler: Sat Jan  4 00:50:36 2020, 1610/782518016,
LOG Virus found, sending redirection header / error page.
Sat Jan  4 00:50:39 2020, 1610/782518016, squidclamav.c(866)
squidclamav_end_of_data_handler: Sat Jan  4 00:50:39 2020, 1610/782518016,
LOG Virus found in https://secure.eicar.org/eicar_com.zip ending download
[stream: Eicar-
Test-Signature FOUND]

how come the clients ip is not showing up?



Robert K Wild.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20200104/f1b8f558/attachment.html>

More information about the squid-users mailing list