Duane Wessels wrote:
> > Squid-2.3.STABLE1: strict ip_authenticate_ttl option
> > Changed ip_authenticate_ttl to have an strict option, enforcing that the
> > user comes from one IP address only.
> > (not exacly this patch, but a slight variation of it using a on/off
> > directive instead of negative TTL value)
>
> okay. You mean 'authenticate_ip_ttl'. So the timeout goes away?
> If so, "ttl" probably doesn't make much sense any more.
Yes and no.
authenticate_ip_ttl stays as it currently is. In addition to this there
will be another directive (on/off type) to control if
authenticate_ip_ttl is a strict TTL or only soft as it is today (today
it denies one request when detecting a IP change within the TTL, next
request will be allowed. See squid.conf)
> > Squid-2.3.STABLE1: Delay pid file removal until shutdown
> > Delay removal of the pid file until Squid is fully shut down. This is to
> > allow scripts to monitor the pid file waiting for Squid to shut down.
>
> I think someone had a good reason why the pid file was removed
> early. Such as in case it coredumps during the shutdown procedure.
Ok. So there is a tradeoff. I at least prefer to have it removed late.
Scripts anyway have to handle if Squid hangs or crashes.
> > Squid-2.2.STABLE5: Log destination IP on DIRECT
> > This patch logs the destination IP as part of the hierarchy tag in
> > access.log when going direct. This has been requested by a number of
> > people from accounting reasons, and logging the hostname is mostly
> > redundant as it is part of the URL as well.
>
> This should be an option.
Agreed.
/Henrik
Received on Sat Apr 22 2000 - 12:14:24 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:12:23 MST