Jump to letter: [
4ABCDEFGHIJKLMNOPQRSTUVWXYZ
]
squid: The Squid proxy caching server.
Name: | squid |
Vendor: | Fermi National Accelerator Laboratory |
Version: | 2.5.STABLE3 |
License: | GPL |
Release: | 6.3E |
URL: | |
- Summary
- Squid is a high-performance proxy caching server for Web clients,
supporting FTP, gopher, and HTTP data objects. Unlike traditional
caching software, Squid handles all requests in a single,
non-blocking, I/O-driven process. Squid keeps meta data and especially
hot objects cached in RAM, caches DNS lookups, supports non-blocking
DNS lookups, and implements negative caching of failed requests.
Squid consists of a main server program squid, a Domain Name System
lookup program (dnsserver), a program for retrieving FTP data
(ftpget), and some management and client tools.
Changelog
- * Mon Jun 7 19:00:00 2004 Jay Fenlason <fenlason{%}redhat{*}com> 7:2.5.STABLE3-6.3E
- Include patch for CAN-2004-0541: ntlm auth helper buffer overflow
vulnerability.
- * Tue Mar 30 18:00:00 2004 Jay Fenlason <fenlason{%}redhat{*}com> 7:2.5.STABLE3-5.3E
- Quiet the triggerpostun scriptlet.
- * Mon Mar 8 18:00:00 2004 Jay Fenlason <fenlason{%}redhat{*}com> 7:2.5.STABLE3-4.3E
- Backport security fix for %00 hole. See CAN-2004-0189:
The "%xx" URL decoding function in Squid 2.5STABLE4 and earlier allows
remote attackers to bypass url_regex ACLs via a URL with a NULL
("%00") characterm, which causes Squid to use only a portion of the
requested URL when comparing it against the access control lists.
- Backport security fix that adds urllogin acl type that can be used to
protect vulnerable Microsoft Internet Explorer clients.