<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40"><head><meta http-equiv=Content-Type content="text/html; charset=utf-8"><meta name=Generator content="Microsoft Word 15 (filtered medium)"><!--[if !mso]><style>v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style><![endif]--><style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Tahoma;
panose-1:2 11 6 4 3 5 4 4 2 4;}
@font-face
{font-family:Candara;
panose-1:2 14 5 2 3 3 3 2 2 4;}
@font-face
{font-family:"Segoe UI";
panose-1:2 11 5 2 4 2 4 2 2 3;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
p.MsoListParagraph, li.MsoListParagraph, div.MsoListParagraph
{mso-style-priority:34;
margin-top:0in;
margin-right:0in;
margin-bottom:0in;
margin-left:.5in;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
span.EmailStyle21
{mso-style-type:personal-reply;
font-family:"Calibri",sans-serif;
color:windowtext;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
/* List Definitions */
@list l0
{mso-list-id:362486568;
mso-list-type:hybrid;
mso-list-template-ids:-2131221640 67698705 67698713 67698715 67698703 67698713 67698715 67698703 67698713 67698715;}
@list l0:level1
{mso-level-text:"%1\)";
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level2
{mso-level-number-format:alpha-lower;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level3
{mso-level-number-format:roman-lower;
mso-level-tab-stop:none;
mso-level-number-position:right;
text-indent:-9.0pt;}
@list l0:level4
{mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level5
{mso-level-number-format:alpha-lower;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level6
{mso-level-number-format:roman-lower;
mso-level-tab-stop:none;
mso-level-number-position:right;
text-indent:-9.0pt;}
@list l0:level7
{mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level8
{mso-level-number-format:alpha-lower;
mso-level-tab-stop:none;
mso-level-number-position:left;
text-indent:-.25in;}
@list l0:level9
{mso-level-number-format:roman-lower;
mso-level-tab-stop:none;
mso-level-number-position:right;
text-indent:-9.0pt;}
@list l1
{mso-list-id:1284338312;
mso-list-template-ids:940495438;}
@list l1:level1
{mso-level-start-at:2;
mso-level-tab-stop:.5in;
mso-level-number-position:left;
text-indent:-.25in;}
@list l2
{mso-list-id:1642611260;
mso-list-template-ids:1505936054;}
ol
{margin-bottom:0in;}
ul
{margin-bottom:0in;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]--></head><body lang=EN-US link=blue vlink="#954F72" style='word-wrap:break-word'><div class=WordSection1><p class=MsoNormal>Hey Dixit,<o:p></o:p></p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>To get a response you would need to respond in the Bugzilla.<o:p></o:p></p><p class=MsoNormal>Maybe Alex might be able to answer some of your questions about the subject.<o:p></o:p></p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>All The Bests,<o:p></o:p></p><p class=MsoNormal>Eliezer<o:p></o:p></p><p class=MsoNormal><o:p> </o:p></p><div><p class=MsoNormal>----<o:p></o:p></p><p class=MsoNormal>Eliezer Croitoru<o:p></o:p></p><p class=MsoNormal>Tech Support<o:p></o:p></p><p class=MsoNormal>Mobile: +972-5-28704261<o:p></o:p></p><p class=MsoNormal>Email: <a href="mailto:ngtech1ltd@gmail.com">ngtech1ltd@gmail.com</a><o:p></o:p></p></div><p class=MsoNormal><o:p> </o:p></p><div><div style='border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal><b>From:</b> DIXIT Ankit <Ankit.Dixit@eurostar.com> <br><b>Sent:</b> Monday, October 19, 2020 3:11 PM<br><b>To:</b> Eliezer Croitor <ngtech1ltd@gmail.com><br><b>Cc:</b> 'Squid Users' <squid-users@lists.squid-cache.org><br><b>Subject:</b> RE: SSL issue on Squid version 4 after blacklisting<o:p></o:p></p></div></div><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>Elizer,<o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><ol style='margin-top:0in' start=1 type=1><li class=MsoListParagraph style='margin-left:0in;mso-list:l0 level1 lfo3'>I am not able to identify from below like what exactly needs to be done and in which file?<o:p></o:p></li></ol><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal style='background:white'><span style='font-size:12.0pt;font-family:"Courier New";color:black'>* Short-term: Essentially disable OpenSSL built-in certificate validation (for certificates with missing intermediate CAs) and perform that validation from Squid, using X509_verify_cert(), after SSL_connect() returns control to Squid and Squid fetches the missing CAs. This approach still requires some non-trivial Squid development and keeping an eye on OpenSSL built-in validation logic, but it can be completed without OpenSSL modifications and, IMHO, without replicating a lot of OpenSSL internal validation logic.</span><o:p></o:p></p><p class=MsoNormal style='background:white'><span style='font-size:12.0pt;font-family:"Courier New";color:black'> </span><o:p></o:p></p><div style='border:none;border-bottom:solid windowtext 1.0pt;padding:0in 0in 1.0pt 0in'><p class=MsoNormal style='background:white'><span style='font-size:12.0pt;font-family:"Courier New";color:black'>* Long-term: We need a new OpenSSL callback for pausing OpenSSL processing after TLS v1.3 server handshake is decrypted and before certificate validation starts.</span><o:p></o:p></p></div><p class=MsoNormal> <o:p></o:p></p><ol style='margin-top:0in' start=2 type=1><li class=MsoListParagraph style='margin-left:0in;mso-list:l0 level1 lfo3'>Apart from above, I want to also understand if we have below configuration in Squid version 3.5 in squid.conf then how would I replace and to what ,if we move to Squid version 4.12<o:p></o:p></li></ol><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal><span style='background:yellow;mso-highlight:yellow'>sslproxy_cipher HIGH:MEDIUM:!RC4:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS</span><o:p></o:p></p><p class=MsoNormal><span style='background:yellow;mso-highlight:yellow'>sslproxy_options NO_SSLv2,NO_SSLv3,SINGLE_ECDH_USE</span> <o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><div><p class=MsoNormal style='text-autospace:none'><b><span style='color:#1F497D'>Regards,</span></b><o:p></o:p></p><p class=MsoNormal style='text-autospace:none'><b><span style='color:#1F497D'>Ankit Dixit|IS Cloud Team</span></b><o:p></o:p></p><p class=MsoNormal style='text-autospace:none'><b><span style='font-family:"Candara",sans-serif;color:#7F7F7F'>Eurostar International Ltd</span></b><o:p></o:p></p><p class=MsoNormal><b><span style='font-family:"Candara",sans-serif;color:#7F7F7F'>Times House | Bravingtons Walk | </span><span style='color:#7F7F7F'>London N1 9AW</span></b><o:p></o:p></p><p class=MsoNormal style='text-autospace:none'><b><span lang=FR style='color:#7F7F7F'>Office: +44 (0)207 84 35550 (Extension– 35530)</span></b><o:p></o:p></p></div><p class=MsoNormal> <o:p></o:p></p><div><div style='border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal><b>From:</b> Eliezer Croitor <<a href="mailto:ngtech1ltd@gmail.com">ngtech1ltd@gmail.com</a>> <br><b>Sent:</b> Monday, October 12, 2020 12:38 PM<br><b>To:</b> DIXIT Ankit <<a href="mailto:Ankit.Dixit@eurostar.com">Ankit.Dixit@eurostar.com</a>><br><b>Cc:</b> 'Squid Users' <<a href="mailto:squid-users@lists.squid-cache.org">squid-users@lists.squid-cache.org</a>><br><b>Subject:</b> RE: SSL issue on Squid version 4 after blacklisting<o:p></o:p></p></div></div><p class=MsoNormal> <o:p></o:p></p><table class=MsoNormalTable border=0 cellspacing=0 cellpadding=0><tr><td style='padding:0in 0in 0in 0in'><p class=MsoNormal><img border=0 width=600 height=25 style='width:6.25in;height:.2604in' id="_x0000_i1036" src="cid:image001.jpg@01D6A654.AC5F51C0"><o:p></o:p></p></td></tr></table><p class=MsoNormal style='margin-bottom:12.0pt'> <o:p></o:p></p><p class=MsoNormal>Hey Dixit,<o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal>Have you seen the next bug report:<o:p></o:p></p><p class=MsoNormal><a href="https://bugs.squid-cache.org/show_bug.cgi?id=5067#c4">https://bugs.squid-cache.org/show_bug.cgi?id=5067#c4</a><o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal>Alex/Amos: I assume that this specific issue deserve a DEBUG which will describe and relate to this BUG:5067 report.<o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal>Eliezer<o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><div><p class=MsoNormal>----<o:p></o:p></p><p class=MsoNormal>Eliezer Croitoru<o:p></o:p></p><p class=MsoNormal>Tech Support<o:p></o:p></p><p class=MsoNormal>Mobile: +972-5-28704261<o:p></o:p></p><p class=MsoNormal>Email: <a href="mailto:ngtech1ltd@gmail.com">ngtech1ltd@gmail.com</a><o:p></o:p></p></div><p class=MsoNormal> <o:p></o:p></p><div><div style='border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal><b>From:</b> DIXIT Ankit <<a href="mailto:Ankit.Dixit@eurostar.com">Ankit.Dixit@eurostar.com</a>> <br><b>Sent:</b> Friday, September 25, 2020 4:22 PM<br><b>To:</b> Eliezer Croitor <<a href="mailto:ngtech1ltd@gmail.com">ngtech1ltd@gmail.com</a>>; 'Squid Users' <<a href="mailto:squid-users@lists.squid-cache.org">squid-users@lists.squid-cache.org</a>><br><b>Subject:</b> RE: SSL issue on Squid version 4 after blacklisting<o:p></o:p></p></div></div><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal>Elizer/Team,<o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal>Any help would be appreciated.<o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><div><p class=MsoNormal style='text-autospace:none'><b><span style='color:#1F497D'>Regards,</span></b><o:p></o:p></p><p class=MsoNormal style='text-autospace:none'><b><span style='color:#1F497D'>Ankit Dixit|IS Cloud Team</span></b><o:p></o:p></p><p class=MsoNormal style='text-autospace:none'><b><span style='font-family:"Candara",sans-serif;color:#7F7F7F'>Eurostar International Ltd</span></b><o:p></o:p></p><p class=MsoNormal><b><span style='font-family:"Candara",sans-serif;color:#7F7F7F'>Times House | Bravingtons Walk | </span><span style='color:#7F7F7F'>London N1 9AW</span></b><o:p></o:p></p><p class=MsoNormal style='text-autospace:none'><b><span lang=FR style='color:#7F7F7F'>Office: +44 (0)207 84 35550 (Extension– 35530)</span></b><o:p></o:p></p></div><p class=MsoNormal> <o:p></o:p></p><div><div style='border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal><b>From:</b> DIXIT Ankit <br><b>Sent:</b> Tuesday, September 15, 2020 1:24 PM<br><b>To:</b> Eliezer Croitor <<a href="mailto:ngtech1ltd@gmail.com">ngtech1ltd@gmail.com</a>>; 'Squid Users' <<a href="mailto:squid-users@lists.squid-cache.org">squid-users@lists.squid-cache.org</a>><br><b>Subject:</b> SSL issue on Squid version 4 after blacklisting<o:p></o:p></p></div></div><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal><b><u>Subject changed</u></b><o:p></o:p></p><p class=MsoNormal><b> </b><o:p></o:p></p><p class=MsoNormal>Elizer/Team,<o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal>Connecting with you again after we upgraded to Squid version 4.<o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal>We have blacklisted the domain categories on Squid Proxy, but we are getting below exception in cache.log and due to this internet is not flowing from client servers via squid. <o:p></o:p></p><p class=MsoNormal>This blacklist category is having thousands of blacklisted domains.<o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal><span style='background:yellow;mso-highlight:yellow'>kid1| Error negotiating SSL on FD 33: error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed (1/-1/0)</span><o:p></o:p></p><p class=MsoNormal><span style='background:yellow;mso-highlight:yellow'>kid1| Error negotiating SSL connection on FD 26: (104) Connection reset by peer</span><o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal>Is there any specific ssl certificate, we need to configure? Or any other issue, you see here?<o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><div><p class=MsoNormal style='text-autospace:none'><b><span style='color:#1F497D'>Regards,</span></b><o:p></o:p></p><p class=MsoNormal style='text-autospace:none'><b><span style='color:#1F497D'>Ankit Dixit|IS Cloud Team</span></b><o:p></o:p></p><p class=MsoNormal style='text-autospace:none'><b><span style='font-family:"Candara",sans-serif;color:#7F7F7F'>Eurostar International Ltd</span></b><o:p></o:p></p><p class=MsoNormal><b><span style='font-family:"Candara",sans-serif;color:#7F7F7F'>Times House | Bravingtons Walk | </span><span style='color:#7F7F7F'>London N1 9AW</span></b><o:p></o:p></p><p class=MsoNormal style='text-autospace:none'><b><span lang=FR style='color:#7F7F7F'>Office: +44 (0)207 84 35550 (Extension– 35530)</span></b><o:p></o:p></p></div><p class=MsoNormal> <o:p></o:p></p><div><div style='border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal><b>From:</b> DIXIT Ankit <br><b>Sent:</b> Monday, July 6, 2020 8:50 AM<br><b>To:</b> Eliezer Croitor <<a href="mailto:ngtech1ltd@gmail.com">ngtech1ltd@gmail.com</a>>; 'Squid Users' <<a href="mailto:squid-users@lists.squid-cache.org">squid-users@lists.squid-cache.org</a>><br><b>Subject:</b> RE: [squid-users] Squid memory consumption problem<o:p></o:p></p></div></div><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal>Elizer,<o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal>SSL was failing for few applications but was working fine for other applications. So we reverted back to old version.<o:p></o:p></p><p class=MsoNormal>I am not sure what ssl certificate dependency was there. <o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal>Would be great, if you can suggest memory leak solutions in 3.12 version.<o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><div><p class=MsoNormal style='text-autospace:none'><b><span style='color:#1F497D'>Regards,</span></b><o:p></o:p></p><p class=MsoNormal style='text-autospace:none'><b><span style='color:#1F497D'>Ankit Dixit|IS Cloud Team</span></b><o:p></o:p></p><p class=MsoNormal style='text-autospace:none'><b><span style='font-family:"Candara",sans-serif;color:#7F7F7F'>Eurostar International Ltd</span></b><o:p></o:p></p><p class=MsoNormal><b><span style='font-family:"Candara",sans-serif;color:#7F7F7F'>Times House | Bravingtons Walk | </span><span style='color:#7F7F7F'>London N1 9AW</span></b><o:p></o:p></p><p class=MsoNormal style='text-autospace:none'><b><span lang=FR style='color:#7F7F7F'>Office: +44 (0)207 84 35550 (Extension– 35530)</span></b><o:p></o:p></p></div><p class=MsoNormal> <o:p></o:p></p><div><div style='border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal><b>From:</b> Eliezer Croitor <<a href="mailto:ngtech1ltd@gmail.com">ngtech1ltd@gmail.com</a>> <br><b>Sent:</b> Sunday, July 5, 2020 5:58 PM<br><b>To:</b> DIXIT Ankit <<a href="mailto:Ankit.Dixit@eurostar.com">Ankit.Dixit@eurostar.com</a>>; 'Squid Users' <<a href="mailto:squid-users@lists.squid-cache.org">squid-users@lists.squid-cache.org</a>><br><b>Cc:</b> SETHI Konica <<a href="mailto:Konica.Sethi@eurostar.com">Konica.Sethi@eurostar.com</a>><br><b>Subject:</b> RE: [squid-users] Squid memory consumption problem<o:p></o:p></p></div></div><p class=MsoNormal> <o:p></o:p></p><table class=MsoNormalTable border=0 cellspacing=0 cellpadding=0><tr><td style='padding:0in 0in 0in 0in'><p class=MsoNormal><img border=0 width=600 height=25 style='width:6.25in;height:.2604in' id="Picture_x0020_2" src="cid:image001.jpg@01D6A654.AC5F51C0"><o:p></o:p></p></td></tr></table><p class=MsoNormal style='margin-bottom:12.0pt'><span style='color:black'> </span><o:p></o:p></p><p class=MsoNormal><span style='color:#1F497D'>Hey,</span><o:p></o:p></p><p class=MsoNormal><span style='color:#1F497D'> </span><o:p></o:p></p><p class=MsoNormal><span style='color:#1F497D'>What happen with this issue?</span><o:p></o:p></p><p class=MsoNormal><span style='color:#1F497D'>I am waiting for any input about this issue to understand with what I can try to help.</span><o:p></o:p></p><p class=MsoNormal><span style='color:#1F497D'> </span><o:p></o:p></p><p class=MsoNormal><span style='color:#1F497D'>Eliezer</span><o:p></o:p></p><p class=MsoNormal><span style='color:#1F497D'> </span><o:p></o:p></p><div><p class=MsoNormal><span style='color:#1F497D'>----</span><o:p></o:p></p><p class=MsoNormal><span style='color:#1F497D'>Eliezer Croitoru</span><o:p></o:p></p><p class=MsoNormal><span style='color:#1F497D'>Tech Support</span><o:p></o:p></p><p class=MsoNormal><span style='color:#1F497D'>Mobile: +972-5-28704261</span><o:p></o:p></p><p class=MsoNormal><span style='color:#1F497D'>Email: <a href="mailto:ngtech1ltd@gmail.com">ngtech1ltd@gmail.com</a></span><o:p></o:p></p></div><p class=MsoNormal><span style='color:#1F497D'> </span><o:p></o:p></p><div><div style='border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal><b><span style='font-size:10.0pt;font-family:"Tahoma",sans-serif'>From:</span></b><span style='font-size:10.0pt;font-family:"Tahoma",sans-serif'> DIXIT Ankit [<a href="mailto:Ankit.Dixit@eurostar.com">mailto:Ankit.Dixit@eurostar.com</a>] <br><b>Sent:</b> Tuesday, June 30, 2020 12:35 PM<br><b>To:</b> Eliezer Croitoru; Squid Users<br><b>Cc:</b> SETHI Konica<br><b>Subject:</b> RE: [squid-users] Squid memory consumption problem</span><o:p></o:p></p></div></div><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal>For your information, we have added below configurations but again same issue.<o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal>tls_outgoing_options options=NO_SSLv3,SINGLE_DH_USE,SINGLE_ECDH_USE<o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal>tls_outgoing_options cipher=HIGH:MEDIUM:!RC4:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS<o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><div><p class=MsoNormal style='text-autospace:none'><b><span style='color:#1F497D'>Regards,</span></b><o:p></o:p></p><p class=MsoNormal style='text-autospace:none'><b><span style='color:#1F497D'>Ankit Dixit|IS Cloud Team</span></b><o:p></o:p></p><p class=MsoNormal style='text-autospace:none'><b><span style='font-family:"Candara",sans-serif;color:#7F7F7F'>Eurostar International Ltd</span></b><o:p></o:p></p><p class=MsoNormal><b><span style='font-family:"Candara",sans-serif;color:#7F7F7F'>Times House | Bravingtons Walk | </span><span style='color:#7F7F7F'>London N1 9AW</span></b><o:p></o:p></p><p class=MsoNormal style='text-autospace:none'><b><span lang=FR style='color:#7F7F7F'>Office: +44 (0)207 84 35550 (Extension– 35530)</span></b><o:p></o:p></p></div><p class=MsoNormal> <o:p></o:p></p><div><div style='border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal><b>From:</b> DIXIT Ankit <br><b>Sent:</b> Tuesday, June 30, 2020 10:25 AM<br><b>To:</b> Eliezer Croitoru <<a href="mailto:ngtech1ltd@gmail.com">ngtech1ltd@gmail.com</a>>; Squid Users <<a href="mailto:squid-users@lists.squid-cache.org">squid-users@lists.squid-cache.org</a>><br><b>Cc:</b> SETHI Konica <<a href="mailto:Konica.Sethi@eurostar.com">Konica.Sethi@eurostar.com</a>><br><b>Subject:</b> RE: [squid-users] Squid memory consumption problem<o:p></o:p></p></div></div><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal>Eliezer,<o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal>Clients are facing some SSL related issues after upgrade. I could see below error. Please suggest, its little urgent.<o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal><span style='font-size:10.5pt;font-family:"Segoe UI",sans-serif'>quid[6706]: Error negotiating SSL connection on FD 167: error:00000001:lib(0):func(0):reason(1) (1/0)<br>Jun 30 09:17:38 squid[6706]: Error parsing SSL Server Hello Message on FD 77<br>Jun 30 09:17:38 squid[6706]: Error negotiating SSL connection on FD 75: error:00000001:lib(0):func(0):reason(1) (1/0)</span><o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><div><p class=MsoNormal style='text-autospace:none'><b><span style='color:#1F497D'>Regards,</span></b><o:p></o:p></p><p class=MsoNormal style='text-autospace:none'><b><span style='color:#1F497D'>Ankit Dixit|IS Cloud Team</span></b><o:p></o:p></p><p class=MsoNormal style='text-autospace:none'><b><span style='font-family:"Candara",sans-serif;color:#7F7F7F'>Eurostar International Ltd</span></b><o:p></o:p></p><p class=MsoNormal><b><span style='font-family:"Candara",sans-serif;color:#7F7F7F'>Times House | Bravingtons Walk | </span><span style='color:#7F7F7F'>London N1 9AW</span></b><o:p></o:p></p><p class=MsoNormal style='text-autospace:none'><b><span lang=FR style='color:#7F7F7F'>Office: +44 (0)207 84 35550 (Extension– 35530)</span></b><o:p></o:p></p></div><p class=MsoNormal> <o:p></o:p></p><div><div style='border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal><b>From:</b> Eliezer Croitoru <<a href="mailto:ngtech1ltd@gmail.com">ngtech1ltd@gmail.com</a>> <br><b>Sent:</b> Tuesday, June 30, 2020 9:10 AM<br><b>To:</b> Squid Users <<a href="mailto:squid-users@lists.squid-cache.org">squid-users@lists.squid-cache.org</a>>; DIXIT Ankit <<a href="mailto:Ankit.Dixit@eurostar.com">Ankit.Dixit@eurostar.com</a>><br><b>Subject:</b> RE: [squid-users] Squid memory consumption problem<o:p></o:p></p></div></div><p class=MsoNormal> <o:p></o:p></p><table class=MsoNormalTable border=0 cellspacing=0 cellpadding=0><tr><td style='padding:0in 0in 0in 0in'><p class=MsoNormal><img border=0 width=600 height=25 style='width:6.25in;height:.2604in' id="Picture_x0020_1" src="cid:image001.jpg@01D6A654.AC5F51C0"><o:p></o:p></p></td></tr></table><p class=MsoNormal style='margin-bottom:12.0pt'><span style='color:black'> </span><o:p></o:p></p><p class=MsoNormal>The first thing to do is look at:<o:p></o:p></p><p class=MsoNormal><a href="https://wiki.squid-cache.org/KnowledgeBase/HostHeaderForgery">https://wiki.squid-cache.org/KnowledgeBase/HostHeaderForgery</a><o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal>It should clear couple doubts for you.<o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal>Eliezer<o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal>----<o:p></o:p></p><p class=MsoNormal>Eliezer Croitoru<o:p></o:p></p><p class=MsoNormal>Tech Support<o:p></o:p></p><p class=MsoNormal>Mobile: +972-5-28704261<o:p></o:p></p><p class=MsoNormal>Email: <a href="mailto:ngtech1ltd@gmail.com">ngtech1ltd@gmail.com</a><o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><div style='border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal><b>From: </b><a href="mailto:Ankit.Dixit@eurostar.com">DIXIT Ankit</a><br><b>Sent: </b>Tuesday, June 30, 2020 10:46 AM<br><b>To: </b><a href="mailto:ngtech1ltd@gmail.com">Eliezer Croitoru</a>; <a href="mailto:rousskov@measurement-factory.com">Alex Rousskov</a>; <a href="mailto:squid-users@lists.squid-cache.org">squid-users@lists.squid-cache.org</a><br><b>Subject: </b>RE: [squid-users] Squid memory consumption problem<o:p></o:p></p></div><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal>Elizer,<o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal>We installed Squid 4.12 on production server, amazon Linux 2, successfully but I could see below messages in the logs for SECURITY ALERT: Host header forgery detected. These are getting generated very frequently.<o:p></o:p></p><p class=MsoNormal>Can we ignore this Or is it advised to suppress these alerts?<o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal><span style='background:yellow;mso-highlight:yellow'>kid2| SECURITY ALERT: on URL: <a href="http://5-25-3-app.agent.datadoghq.com:443">5-25-3-app.agent.datadoghq.com:443</a></span><o:p></o:p></p><p class=MsoNormal><span style='background:yellow;mso-highlight:yellow'>2020/06/30 07:41:29 kid1| SECURITY ALERT: Host header forgery detected on local=IP remote=IP FD 97 flags=33 (local IP does not match any domain IP)</span><o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><div><p class=MsoNormal style='text-autospace:none'><b><span style='color:#1F497D'>Regards,</span></b><o:p></o:p></p><p class=MsoNormal style='text-autospace:none'><b><span style='color:#1F497D'>Ankit Dixit|IS Cloud Team</span></b><o:p></o:p></p><p class=MsoNormal style='text-autospace:none'><b><span style='font-family:"Candara",sans-serif;color:#7F7F7F'>Eurostar International Ltd</span></b><o:p></o:p></p><p class=MsoNormal><b><span style='font-family:"Candara",sans-serif;color:#7F7F7F'>Times House | Bravingtons Walk | </span><span style='color:#7F7F7F'>London N1 9AW</span></b><o:p></o:p></p><p class=MsoNormal style='text-autospace:none'><b><span lang=FR style='color:#7F7F7F'>Office: +44 (0)207 84 35550 (Extension– 35530)</span></b><o:p></o:p></p></div><p class=MsoNormal style='margin-bottom:12.0pt'> <o:p></o:p></p><p class=MsoNormal style='margin-bottom:12.0pt'><span style='font-size:10.0pt;font-family:"Arial",sans-serif'> </span><o:p></o:p></p><div class=MsoNormal align=center style='text-align:center'><span style='font-size:10.0pt;font-family:"Arial",sans-serif'><hr size=1 width="100%" align=center></span></div><p class=MsoNormal><span style='font-size:10.0pt;font-family:"Arial",sans-serif'>This email (including any attachments) is intended only for the addressee(s), is confidential and may be legally privileged. If you are not the intended recipient, do not use, disclose, copy, or forward this email. Please notify the sender immediately and then delete it. Eurostar International Limited and its affiliates ("EIL") do not accept any liability for action taken in reliance on this email. EIL makes no representation that this email is free of viruses and addressees should check this email for viruses. The comments or statements expressed in this email are not necessarily those of EIL. <br><br>Eurostar International Ltd <br>Times House, Bravingtons Walk, London N1 9AW Registered in England and Wales No. 2462001 </span><o:p></o:p></p><div class=MsoNormal align=center style='text-align:center'><span style='font-size:10.0pt;font-family:"Arial",sans-serif'><hr size=1 width="100%" align=center></span></div><p class=MsoNormal style='margin-bottom:12.0pt'> <o:p></o:p></p><p class=MsoNormal style='margin-bottom:12.0pt'><span style='font-size:10.0pt;font-family:"Arial",sans-serif'> </span><o:p></o:p></p><div class=MsoNormal align=center style='text-align:center'><span style='font-size:10.0pt;font-family:"Arial",sans-serif'><hr size=1 width="100%" align=center></span></div><p class=MsoNormal><span style='font-size:10.0pt;font-family:"Arial",sans-serif'>This email (including any attachments) is intended only for the addressee(s), is confidential and may be legally privileged. If you are not the intended recipient, do not use, disclose, copy, or forward this email. Please notify the sender immediately and then delete it. Eurostar International Limited and its affiliates ("EIL") do not accept any liability for action taken in reliance on this email. EIL makes no representation that this email is free of viruses and addressees should check this email for viruses. The comments or statements expressed in this email are not necessarily those of EIL. <br><br>Eurostar International Ltd <br>Times House, Bravingtons Walk, London N1 9AW Registered in England and Wales No. 2462001 </span><o:p></o:p></p><div class=MsoNormal align=center style='text-align:center'><span style='font-size:10.0pt;font-family:"Arial",sans-serif'><hr size=1 width="100%" align=center></span></div><p class=MsoNormal style='margin-bottom:12.0pt'> <o:p></o:p></p><p class=MsoNormal style='margin-bottom:12.0pt'><span style='font-size:10.0pt;font-family:"Arial",sans-serif'><o:p> </o:p></span></p><div class=MsoNormal align=center style='text-align:center'><span style='font-size:10.0pt;font-family:"Arial",sans-serif'><hr size=2 width="100%" align=center></span></div><p class=MsoNormal><span style='font-size:10.0pt;font-family:"Arial",sans-serif'>This email (including any attachments) is intended only for the addressee(s), is confidential and may be legally privileged. If you are not the intended recipient, do not use, disclose, copy, or forward this email. Please notify the sender immediately and then delete it. Eurostar International Limited and its affiliates ("EIL") do not accept any liability for action taken in reliance on this email. EIL makes no representation that this email is free of viruses and addressees should check this email for viruses. The comments or statements expressed in this email are not necessarily those of EIL. <br><br>Eurostar International Ltd <br>Times House, Bravingtons Walk, London N1 9AW Registered in England and Wales No. 2462001 <o:p></o:p></span></p><div class=MsoNormal align=center style='text-align:center'><span style='font-size:10.0pt;font-family:"Arial",sans-serif'><hr size=2 width="100%" align=center></span></div></div></body></html>