[squid-users] Terminate squid abnormally

Alex Rousskov rousskov at measurement-factory.com
Mon May 11 16:28:08 UTC 2020


On 5/10/20 2:58 PM, leomessi983 at yahoo.com wrote:

> FATAL: The /usr/lib64/squid/security_file_certgen -s /var/lib/ssl_db -M 20MB helpers are crashing too rapidly, need help!

This fatal error needs your attention. Most likely, your certificate
generator cannot use its database, either because it was not initialized
or because the generator lacks permissions to access the database. Many
similar problems are triaged on this mailing list. You may want to
search for those emails.

Fixing this problem will not remove the "SECURITY ALERT" messages.


> Is there any configuration directive in squid to does not resolve
> requested URLs from client or use their resolved IP addresses?

There is not yet. It may be difficult to convince all the gatekeepers to
allow such directive(s), but it may possible to do so if Squid still
does not cache the response of the tainted transaction. If anybody wants
to make or sponsor the corresponding changes, I recommend starting with
posting an RFC on squid-dev.


Cheers,

Alex.


More information about the squid-users mailing list