Jump to letter: [
CFGHIJOPVX
]
frontier-squid - The Frontier distribution of the Squid proxy caching server
License: |
GPL |
Vendor: |
Koji |
- Description:
Squid is a high-performance proxy caching server for Web clients,
supporting FTP, gopher, and HTTP data objects. Unlike traditional
caching software, Squid handles all requests in a single,
non-blocking, I/O-driven process. Squid keeps meta data and especially
hot objects cached in RAM, caches DNS lookups, supports non-blocking
DNS lookups, and implements negative caching of failed requests. This
squid distribution has been expecially tuned to work with the Frontier
server to cache Database entries retrieved from an ORACLE back-end,
particularly its need for the http standard If-Modified-Since feature.
Packages
frontier-squid-5.9-2.1.osg23.el8.src
[25.6 MiB] |
Changelog
by Carl Vuosalo (2024-01-11):
- Apply security patches from Squid 6 to address security concerns since
a version of Squid 6 suitable for frontier-squid is not available yet.
- The following security vulnerabilities have been addressed with patches:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46724
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46847
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46848
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-49285
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-50269
https://github.com/squid-cache/squid/security/advisories/GHSA-j83v-w3p4-5cqh
- The following two vulnerabilities are addressed by disabling Gopher and TRACE
requests, respectively, in the squid.conf.proto file:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46728
https://megamansec.github.io/Squid-Security-Audit/trace-uaf.html
- To support SELinux, require /sbin/restorecon and apply it to the log directory,
in addition to the cache directory.
- Update to shoal-1.0.2 to fix setting of external_ip.
|
frontier-squid-5.9-1.1.osg23.el8.src
[25.2 MiB] |
Changelog
by Carl Vuosalo (2023-05-23):
- Update to squid-5.9, with announcement at
http://lists.squid-cache.org/pipermail/squid-announce/2023-May/000147.html and
release notes at http://www.squid-cache.org/Versions/v5/squid-5.9-RELEASENOTES.html.
squid-5.9 contains small fixes including improvement of debug logging related to the
reply_body_max_size parameter.
- Consistent with squid5, disallow the combination of multiple workers, ufs cache,
and memory_cache_shared even if collapsed_forwarding is off.
- Limit the maximum number of file descriptors to 65536 even if the OS would allow
a higher number.
|