Jump to letter: [
CFGHIJOPVX
]
frontier-squid - The Frontier distribution of the Squid proxy caching server
| License: |
GPL |
| Vendor: |
Koji |
- Description:
Squid is a high-performance proxy caching server for Web clients,
supporting FTP, gopher, and HTTP data objects. Unlike traditional
caching software, Squid handles all requests in a single,
non-blocking, I/O-driven process. Squid keeps meta data and especially
hot objects cached in RAM, caches DNS lookups, supports non-blocking
DNS lookups, and implements negative caching of failed requests. This
squid distribution has been expecially tuned to work with the Frontier
server to cache Database entries retrieved from an ORACLE back-end,
particularly its need for the http standard If-Modified-Since feature.
Packages
| frontier-squid-5.9-2.1.osg23.el9.src
[25.5 MiB] |
Changelog
by Carl Vuosalo (2024-01-11):
- Apply security patches from Squid 6 to address security concerns since
a version of Squid 6 suitable for frontier-squid is not available yet.
- The following security vulnerabilities have been addressed with patches:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46724
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46847
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46848
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-49285
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-50269
https://github.com/squid-cache/squid/security/advisories/GHSA-j83v-w3p4-5cqh
- The following two vulnerabilities are addressed by disabling Gopher and TRACE
requests, respectively, in the squid.conf.proto file:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46728
https://megamansec.github.io/Squid-Security-Audit/trace-uaf.html
- To support SELinux, require /sbin/restorecon and apply it to the log directory,
in addition to the cache directory.
- Update to shoal-1.0.2 to fix setting of external_ip.
|