[squid-dev] [PATCH] Must revalidate CC:no-cache responses
Eduard Bagdasaryan
eduard.bagdasaryan at measurement-factory.com
Mon Sep 5 22:01:25 UTC 2016
2016-09-05 13:38 GMT+03:00 Amos Jeffries <squid3 at treenet.co.nz>:
> However we still have people wanting the nasty refresh_pattern
> ignore-private option. In order to minimize the security issues that
> causes anything marked as CC:private that does get into cache needs to
> be revalidated on every use just like CC:no-cache.
Ok, thank you.
2016-09-05 13:38 GMT+03:00 Amos Jeffries <squid3 at treenet.co.nz>:
> * ccPrivate is only cacheable in the same conditions as
> ccNoCacheNoParams so should be a ENTRY_REVALIDATE_ALWAYS as well.
> - this also affects the debugs() in src/refresh.cc syign why it needs
> to revalidate.
Updated the patch with these remarks.
Eduard.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: SQUID-228-must-revalidate-no-cache-responses-t3.patch
Type: text/x-patch
Size: 13659 bytes
Desc: not available
URL: <http://lists.squid-cache.org/pipermail/squid-dev/attachments/20160906/c2cb33a9/attachment.bin>
More information about the squid-dev
mailing list