Re: [squid-users] Re: Is it possible to have a deny_info page for CONNECT method/ACL?

From: Amos Jeffries <squid3_at_treenet.co.nz>
Date: Tue, 19 Apr 2011 13:19:15 +1200

 On Mon, 18 Apr 2011 16:45:01 -0700 (PDT), Supadee718 wrote:
>>On 29/01/11 02:02, Jason Doran wrote:
>
>>In order to get anything useful to happen the deny_info must perform
>> a
>>URL redirect with a 307 status code. And the browser must support
>>correct RFC 2616 handling of that status code.
>
>>Support for 307 has been added to 3.1 since the last formal package.
>> So
>>you will need to build one of the recent the 3.1 daily update
>> bundles.
>
>>As of this writing Firefox or Iceweasel are the only known browsers
>> to
>>handle this correctly.

>
> Amos or Anyone
>
> Is there a work around or a way to get this problem resolved

 In older Squid you may send the 307 using a URL redirector instead of
 deny_info. The trouble is that redirectors are run AFTER http_access.

 You could grab the patch for 3.2 and port it to your version if you
 like. It's just an extra method and client HTTP version test when
 converting the old deny_info result into a 302.

 Amos
Received on Tue Apr 19 2011 - 01:19:20 MDT

This archive was generated by hypermail 2.2.0 : Tue Apr 19 2011 - 12:00:04 MDT