[squid-users] Access Log Question
Matus UHLAR - fantomas
uhlar at fantomas.sk
Tue Nov 12 15:18:30 UTC 2024
On 12.11.24 15:16, Piana, Josh wrote:
>Seems like it.
>
>Example:
>
>12/Nov/2024:09:51:37 -0500.396 10.46.49.135 TCP_TUNNEL/200 23735 CONNECT http://www.safgard.com:443/ - \ HIER_DIRECT/206.188.0.52 - -/-
yes, this looks like the username is not known to squid, thus probably
bypassed authentication.
what type of proxy authentication you use?
>-----Original Message-----
>From: squid-users <squid-users-bounces at lists.squid-cache.org> On Behalf Of Matus UHLAR - fantomas
>Sent: Tuesday, November 12, 2024 10:10 AM
>To: squid-users at lists.squid-cache.org
>Subject: Re: [squid-users] Access Log Question
>
>Caution: This email originated from outside of Hexcel. Do not click links or open attachments unless you recognize the sender and know the content is safe.
>
>
>On 12.11.24 14:56, Piana, Josh wrote:
>> At some point, the access log has stopped recording which users are
>> trying to access which sites.
>>
>> I'm currently thinking is could be an issue with log format, Squid not
>> being able to receive the header information, or authentication is
>> being bypassed completely due to our config, for some reason.
>
>what is it logging? doest is log "-" instead of usernames?
--
Matus UHLAR - fantomas, uhlar at fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Micro$oft random number generator: 0, 0, 0, 4.33e+67, 0, 0, 0...
More information about the squid-users
mailing list