system environment/daemons

frontier-squid - The Frontier distribution of the Squid proxy caching server

License: GPL
Vendor: Koji
Description:
Squid is a high-performance proxy caching server for Web clients,
supporting FTP, gopher, and HTTP data objects. Unlike traditional
caching software, Squid handles all requests in a single,
non-blocking, I/O-driven process. Squid keeps meta data and especially
hot objects cached in RAM, caches DNS lookups, supports non-blocking
DNS lookups, and implements negative caching of failed requests.  This
squid distribution has been expecially tuned to work with the Frontier
server to cache Database entries retrieved from an ORACLE back-end,
particularly its need for the http standard If-Modified-Since feature.

Packages

frontier-squid-5.9-2.1.osg23.el8.src [25.6 MiB] Changelog by Carl Vuosalo (2024-01-11):
- Apply security patches from Squid 6 to address security concerns since 
    a version of Squid 6 suitable for frontier-squid is not available yet.
 - The following security vulnerabilities have been addressed with patches:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46724
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46847
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46848
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-49285
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-50269
    https://github.com/squid-cache/squid/security/advisories/GHSA-j83v-w3p4-5cqh
 - The following two vulnerabilities are addressed by disabling Gopher and TRACE
    requests, respectively, in the squid.conf.proto file:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46728
    https://megamansec.github.io/Squid-Security-Audit/trace-uaf.html
 - To support SELinux, require /sbin/restorecon and apply it to the log directory,
    in addition to the cache directory.
 - Update to shoal-1.0.2 to fix setting of external_ip.
frontier-squid-5.9-1.1.osg23.el8.src [25.2 MiB] Changelog by Carl Vuosalo (2023-05-23):
- Update to squid-5.9, with announcement at
    http://lists.squid-cache.org/pipermail/squid-announce/2023-May/000147.html and
    release notes at http://www.squid-cache.org/Versions/v5/squid-5.9-RELEASENOTES.html.
    squid-5.9 contains small fixes including improvement of debug logging related to the
    reply_body_max_size parameter.
 - Consistent with squid5, disallow the combination of multiple workers, ufs cache,
    and memory_cache_shared even if collapsed_forwarding is off.
 - Limit the  maximum number of file descriptors to 65536 even if the OS would allow
    a higher number.

Listing created by Repoview-0.6.6-4.el7