[squid-users] deny_info page not shown
Janos Dohanics
web at 3dresearch.com
Fri Aug 28 08:23:44 UTC 2020
On Fri, 28 Aug 2020 18:59:56 +1200
Amos Jeffries <squid3 at treenet.co.nz> wrote:
> On 28/08/20 6:22 pm, Janos Dohanics wrote:
> >
> > Is there a way to have deny_info instruct browsers to reliably
> > display the desired URL/page?
>
> No there is not. This is a security feature of Browsers not something
> Squid can workaround.
>
> CONNECT is a request to open a TCP connection. Delivering an HTTP
> page, or even a URL redirect in response to a TCP connection request
> is completely the wrong type of result.
>
> Like asking someone to open a door because you have a load of things
> needing to go through it - and they instead throw a basket of apples
> at you. Not want you expected, and more harm than good.
Thanks for the explanation - so, the rationale for the http://... acl
value in the deny_info directive is conditioned on "if the browser is
willing"?
More information about the squid-users
mailing list