惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

F
Fortinet All Blogs
Attack and Defense Labs
Attack and Defense Labs
V2EX - 技术
V2EX - 技术
O
OpenAI News
S
Secure Thoughts
H
Heimdal Security Blog
Application and Cybersecurity Blog
Application and Cybersecurity Blog
Schneier on Security
Schneier on Security
H
Hacker News: Front Page
S
Security Affairs
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
cs.CV updates on arXiv.org
cs.CV updates on arXiv.org
Vercel News
Vercel News
Microsoft Security Blog
Microsoft Security Blog
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org
P
Proofpoint News Feed
The Register - Security
The Register - Security
GbyAI
GbyAI
Cloudbric
Cloudbric
MongoDB | Blog
MongoDB | Blog
D
Darknet – Hacking Tools, Hacker News & Cyber Security
K
Kaspersky official blog
Forbes - Security
Forbes - Security
Y
Y Combinator Blog
C
CXSECURITY Database RSS Feed - CXSecurity.com
Scott Helme
Scott Helme
Hacker News - Newest:
Hacker News - Newest: "LLM"
The Cloudflare Blog
Recorded Future
Recorded Future
人人都是产品经理
人人都是产品经理
Cyberwarzone
Cyberwarzone
C
CERT Recently Published Vulnerability Notes
Webroot Blog
Webroot Blog
C
Cyber Attacks, Cyber Crime and Cyber Security
L
LangChain Blog
T
Tor Project blog
Microsoft Azure Blog
Microsoft Azure Blog
博客园_首页
Hacker News: Ask HN
Hacker News: Ask HN
Blog — PlanetScale
Blog — PlanetScale
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
B
Blog RSS Feed
N
News and Events Feed by Topic
阮一峰的网络日志
阮一峰的网络日志
I
Intezer
V
V2EX
T
Tailwind CSS Blog
SecWiki News
SecWiki News
NISL@THU
NISL@THU
C
Check Point Blog

Squid

萌新入坑求指教 - V2EX squid 正向代理问题 - V2EX Squid 配置了 cache_peer ,为啥不生效? - V2EX squid 只能访问 https 的网站, http 无法访问。 - V2EX V2EX Squid 如何国内外分流 - V2EX squid 配置 Basic auth 始终失败,百思不得其解 - V2EX 哪位做过 squid 本地缓存 - V2EX Squid的配置中,cache_peer使用ssl通信究竟如何配置? - V2EX
(Squid) is not configured to allow SSL tunnel to port 80 - V2EX
yazoox · 2021-09-27 · via Squid

因为一个组件需要访问 dropbox 的 API,所以,临时搭一个 proxy,借用美国同事的机器。

我用的这个 docker image,
docker run --name squid -d -p 8010:3128 Datadog/squid

在 chrome 里面,设置了 switchy omega 到该机器的地址端口,能够正常工作,打开油管啥的, etc.

如果我用 proxifier, protocol 设置 http 模式,check 都通过,但是设置成 https,就会报错。


[43:29] Testing Started.
	Proxy Server
	Address:	10.35.35.87:8010
	Protocol:	HTTPS
	Authentication: NO

[43:29] Starting: Test 1: Connection to the Proxy Server
[43:29] IP Address: 10.35.35.87
[43:29] Connection established
[43:29] Test passed.
[43:29] Starting: Test 2: Connection through the Proxy Server
	Error: the proxy server (Squid) is not configured to allow SSL tunnel to port 80.
	To fix the problem please find and comment the following line in the Squid
	configuration file (squid.conf):
		http_access deny CONNECT !SSL_ports
	The proxy server reply header is:
		HTTP/1.1 403 Forbidden
		Server: squid/3.5.12
		Mime-Version: 1.0
		Date: Mon, 27 Sep 2021 09:43:32 GMT
		Content-Type: text/html;charset=utf-8
		Content-Length: 3441
		X-Squid-Error: ERR_ACCESS_DENIED 0
		Vary: Accept-Language
		Content-Language: en
		X-Cache: MISS from cf3b7970725b
		X-Cache-Lookup: NONE from cf3b7970725b:3128
		Via: 1.1 cf3b7970725b (squid/3.5.12)
		Connection: keep-alive
[43:29] Test failed.
[43:29] Testing Finished.

提示我把这句配置注释掉
"http_access deny CONNECT !SSL_ports"

于是 ,我去 https://gist.github.com/sritchie/1357652 下载了一个样本,把“头”那部分删除掉了。 然后把这句给#注释掉了。

但是貌似没有啥用。不知道是不是这个.conf 太老了,或者有太多不需要的配置了,还是说,要走 https 的 protocol,得配置相关的 cert,等等?

不知道有没有 squid 专家,指点一下

谢谢!