The OpenNET Project / Index page

[ новости /+++ | форум | теги | ]

форумы  помощь  поиск  регистрация  майллист  ВХОД  слежка  RSS
"assertion failed: acl.c:1198: 'authenticateUserAuthenticated..."
Вариант для распечатки  
Пред. тема | След. тема 
Форумы Настройка Squid и других прокси серверов (Public)
Изначальное сообщение [Проследить за развитием треда]

"assertion failed: acl.c:1198: 'authenticateUserAuthenticated..." 
Сообщение от loewa emailИскать по авторуВ закладки on 17-Июн-05, 09:55  (MSK)
Вот такое вот сообщение после чего squid вываливается
FreeBSD 5.0
Squid Cache: Version 2.5.STABLE4
configure options:  --prefix=/usr/local/squid --enable-delay-pools --enable-default-err-language=Russian-koi8-r '--enable-err-languages=Russian-koi8-r Russian-1251 English' --enable-ipf-transparent --enable-auth=ntlm,basic --enable-basic-auth-helpers=winbind --enable-ntlm-auth-helpers=winbind --enable-extacclog --enable-snmp
  Правка | Высказать мнение | Ответить | Рекомендовать в FAQ | Cообщить модератору | Наверх

 Оглавление

Индекс форумов | Темы | Пред. тема | След. тема
Сообщения по теме

1. "assertion failed: acl.c:1198: 'authenticateUserAuthenticated..." 
Сообщение от loewa emailИскать по авторуВ закладки on 17-Июн-05, 14:44  (MSK)
Дополнение
cache.log
2005/06/17 10:19:48| sslReadServer: FD 81: read failure: (54) Connection reset by peer
2005/06/17 10:37:13| sslReadServer: FD 67: read failure: (54) Connection reset by peer
2005/06/17 10:54:50| AuthenticateNTLMHandleReply: invalid callback data. Releasing helper '0x81f4990'.
2005/06/17 10:59:44| AuthenticateNTLMHandleReply: invalid callback data. Releasing helper '0x81f4990'.
2005/06/17 11:13:18| assertion failed: acl.c:1198: "authenticateUserAuthenticated(auth_user_request)"
2005/06/17 11:13:21| Starting Squid Cache version 2.5.STABLE4 for i386-unknown-freebsd5.0...

Мой squid.conf
# created by SAMS _sams_ 2005-6-17 11:48:57
# NETWORK OPTIONS
# -----------------------------------------------------------------------------

#  TAG: http_port
http_port 172.26.140.30:3128
dead_peer_timeout 60 seconds
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY


# OPTIONS WHICH AFFECT THE CACHE SIZE
# -----------------------------------------------------------------------------

cache_mem 2 MB
cache_swap_low 90
cache_swap_high 95
maximum_object_size 4096 KB
minimum_object_size 0 KB
maximum_object_size_in_memory 4 KB
ipcache_size 1024
ipcache_low 90
ipcache_high 95
fqdncache_size 1024
cache_replacement_policy lru
memory_replacement_policy lru


# LOGFILE PATHNAMES AND CACHE DIRECTORIES
# -----------------------------------------------------------------------------
cache_dir ufs /usr/local/squid/var/cache 900 10 256
cache_access_log /cache/log/access.log
cache_log /cache/log/cache.log
cache_store_log /cache/log/store.log
emulate_httpd_log off
log_ip_on_direct on
log_mime_hdrs off
pid_filename /cache/log/squid.pid
log_fqdn off
client_netmask 255.255.255.255

# OPTIONS FOR EXTERNAL SUPPORT PROGRAMS
# -----------------------------------------------------------------------------

ftp_user memp@emp.ru
ftp_list_width 64
ftp_passive on
ftp_sanitycheck off
dns_timeout 5 minutes
dns_nameservers <ip>
redirect_program /usr/local/squid/etc/redirect
redirect_children 5

auth_param ntlm program /usr/local/squid/libexec/wb_ntlmauth
auth_param ntlm children 10
auth_param ntlm max_challenge_reuses 0
auth_param ntlm max_challenge_lifetime 2 minutes
auth_param basic program /usr/local/squid/libexec/wb_auth
auth_param basic children 10
auth_param basic realm Proxy-server AIS-Pokachi
auth_param basic credentialsttl 5 minutes
authenticate_ttl 5 minutes

# OPTIONS FOR TUNING THE CACHE
# -----------------------------------------------------------------------------

refresh_pattern ^ftp:       1440    20% 10080
refresh_pattern ^gopher:    1440    0%  1440
refresh_pattern .       0   20% 4320
quick_abort_min 16 KB2
quick_abort_max 16 KB
quick_abort_pct 95
# TIMEOUTS
# -----------------------------------------------------------------------------

half_closed_clients off
shutdown_lifetime 60 seconds


# ACCESS CONTROLS
# -----------------------------------------------------------------------------

acl intranet-ip dst <ip>/17 <ip>/16
acl intranet-dmn dstdomain xxxxxx.com
always_direct allow intranet-ip intranet-dmn


#  TAG: acl
acl _sams_Administrator proxy_auth "/usr/local/squid/etc/Administrator.sams"
acl _sams_users proxy_auth "/usr/local/squid/etc/users.sams"
acl _sams_chat url_regex "/usr/local/squid/etc/chat.sams"
acl _sams_porno url_regex "/usr/local/squid/etc/porno.sams"
acl _sams_admins_url url_regex "/usr/local/squid/etc/admins_url.sams"
acl _sams_Admin_path urlpath_regex "/usr/local/squid/etc/Admin_path.sams"
acl nord_admins proxy_auth "/usr/local/squid/etc/nord_admins"
acl nupdate url_regex nupdate
acl _link_Administrator proxy_auth "/usr/local/squid/etc/Administrator.link"
acl _link_users proxy_auth "/usr/local/squid/etc/users.link"
acl _link_chat url_regex "/usr/local/squid/etc/chat.link"
acl _link_porno url_regex "/usr/local/squid/etc/porno.link"
acl _link_admins_url url_regex "/usr/local/squid/etc/admins_url.link"
acl _link_Admin_path urlpath_regex "/usr/local/squid/etc/Admin_path.link"

acl OurNet dst <ip>/255.255.128.0
acl NeighborNet dst <ip>/255.255.0.0 <ip>/255.255.128.0
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src <ip>/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl Safe_ports port 80      # http
acl Safe_ports port 21      # ftp
acl Safe_ports port 443     # https
acl Safe_ports port 443     # snews
acl Safe_ports port 70      # gopher
acl Safe_ports port 210     # wais
acl Safe_ports port 1025-65535  # unregistered ports
acl Safe_ports port 280     # http-mgmt
acl Safe_ports port 488     # gss-http
acl Safe_ports port 591     # filemaker
acl Safe_ports port 777     # multiling http
acl Safe_ports port 5190    # multiling http
acl CONNECT method CONNECT


# ICQ
acl ICQ_DOMAIN          dstdomain       icq.com aol.com
acl ICQ_ADDR            dst             64.12.0.0/16 205.188.0.0/16
acl ICQ_PORT            port            5190 433
acl SSL_ports port 443
acl UDP_ports port 443
acl ICQ_PROTO           proto           HTTPS
http_access   allow  _link_Administrator  ICQ_ADDR ICQ_PORT ICQ_PROTO CONNECT
http_access   allow  _link_users  ICQ_ADDR ICQ_PORT ICQ_PROTO CONNECT
always_direct   allow  ICQ_DOMAIN ICQ_PORT CONNECT
always_direct   allow  ICQ_ADDR   ICQ_PORT CONNECT

#  TAG: http_access
http_access allow _sams_Administrator
http_access allow _sams_users  !_sams_chat !_sams_porno !_sams_admins_url !_sams_Admin_path
http_access deny nupdate !nord_admins
http_access deny _link_admins_url !_link_Administrator
http_accesshttp_access deny _link_Admin_path !_link_Administrator
_link_chat !_link_Administrator
http_access allow NeighborNet
http_access allow OurNet
#http_access deny !Safe_ports
http_access allow CONNECT _link_users Safe_ports
http_access allow CONNECT _link_Administrator Safe_ports
#http_access allow all CONNECT  Safe_ports _link_Administrator
#http_access allow all CONNECT  Safe_ports _link_users
http_access deny CONNECT !Safe_ports
http_access allow localhost

http_access deny all
http_reply_access allow all
icp_access allow all


# ADMINISTRATIVE PARAMETERS
# -----------------------------------------------------------------------------
cache_mgr loewa@xxxxxx.com
cache_effective_user squid
cache_effective_group squid

# MISCELLANEOUS
# -----------------------------------------------------------------------------

append_domain xxxxx.com
forwarded_for off
cachemgr_passwd <pass> info stats/objects
error_directory /usr/local/squid/share/errors/Russian-koi8-r deny

# DELAY POOL PARAMETERS (all require DELAY_POOLS compilation option)
# -----------------------------------------------------------------------------

#  TAG: delay_pools

#  TAG: delay_class
delay_pools 2
delay_class 1 2
delay_class 2 2
delay_access 1 allow _sams_Administrator
delay_access 1 deny all
delay_parameters 1 524288/524288 524288/524288
delay_access 2 allow _sams_users
delay_access 2 deny all
delay_parameters 2 256000/256000 256000/256000

coredump_dir /var/spool/squid

  Удалить Правка | Высказать мнение | Ответить | Рекомендовать в FAQ | Cообщить модератору | Наверх


Архив | Удалить

Индекс форумов | Темы | Пред. тема | След. тема
Оцените тред (1=ужас, 5=супер)? [ 1 | 2 | 3 | 4 | 5 ]
Пожалуйста, прежде чем написать сообщение, ознакомьтесь с данными рекомендациями.




Партнёры:
PostgresPro
Inferno Solutions
Hosting by Hoster.ru
Хостинг:

Закладки на сайте
Проследить за страницей
Created 1996-2024 by Maxim Chirkov
Добавить, Поддержать, Вебмастеру