forum.opennet.ru - "assertion failed: acl.c:1198: 'authenticateUserAuthenticated..." (1)

форумы

помощь

поиск

регистрация

майллист

ВХОД

слежка

"assertion failed: acl.c:1198: 'authenticateUserAuthenticated..."

Форумы Настройка Squid и других прокси серверов (Public)
Вариант для распечатки		Пред. тема \| След. тема
Изначальное сообщение		[Проследить за развитием треда]

"assertion failed: acl.c:1198: 'authenticateUserAuthenticated..."
Сообщение от loewa on 17-Июн-05, 09:55 (MSK)
Вот такое вот сообщение после чего squid вываливается FreeBSD 5.0 Squid Cache: Version 2.5.STABLE4 configure options: --prefix=/usr/local/squid --enable-delay-pools --enable-default-err-language=Russian-koi8-r '--enable-err-languages=Russian-koi8-r Russian-1251 English' --enable-ipf-transparent --enable-auth=ntlm,basic --enable-basic-auth-helpers=winbind --enable-ntlm-auth-helpers=winbind --enable-extacclog --enable-snmp
	Правка \| Высказать мнение \| Ответить \| Рекомендовать в FAQ \| Cообщить модератору \| Наверх

Оглавление

assertion failed: acl.c:1198: 'authenticateUserAuthenticated..., loewa, 14:44 , 17-Июн-05, (1)

Индекс форумов | Темы | Пред. тема | След. тема

Сообщения по теме

1. "assertion failed: acl.c:1198: 'authenticateUserAuthenticated..."

Сообщение от loewa on 17-Июн-05, 14:44  (MSK)

Дополнение
cache.log
2005/06/17 10:19:48| sslReadServer: FD 81: read failure: (54) Connection reset by peer
2005/06/17 10:37:13| sslReadServer: FD 67: read failure: (54) Connection reset by peer
2005/06/17 10:54:50| AuthenticateNTLMHandleReply: invalid callback data. Releasing helper '0x81f4990'.
2005/06/17 10:59:44| AuthenticateNTLMHandleReply: invalid callback data. Releasing helper '0x81f4990'.
2005/06/17 11:13:18| assertion failed: acl.c:1198: "authenticateUserAuthenticated(auth_user_request)"
2005/06/17 11:13:21| Starting Squid Cache version 2.5.STABLE4 for i386-unknown-freebsd5.0...
Мой squid.conf
# created by SAMS _sams_ 2005-6-17 11:48:57
# NETWORK OPTIONS
# -----------------------------------------------------------------------------
#  TAG: http_port
http_port 172.26.140.30:3128
dead_peer_timeout 60 seconds
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY

# OPTIONS WHICH AFFECT THE CACHE SIZE
# -----------------------------------------------------------------------------
cache_mem 2 MB
cache_swap_low 90
cache_swap_high 95
maximum_object_size 4096 KB
minimum_object_size 0 KB
maximum_object_size_in_memory 4 KB
ipcache_size 1024
ipcache_low 90
ipcache_high 95
fqdncache_size 1024
cache_replacement_policy lru
memory_replacement_policy lru

# LOGFILE PATHNAMES AND CACHE DIRECTORIES
# -----------------------------------------------------------------------------
cache_dir ufs /usr/local/squid/var/cache 900 10 256
cache_access_log /cache/log/access.log
cache_log /cache/log/cache.log
cache_store_log /cache/log/store.log
emulate_httpd_log off
log_ip_on_direct on
log_mime_hdrs off
pid_filename /cache/log/squid.pid
log_fqdn off
client_netmask 255.255.255.255
# OPTIONS FOR EXTERNAL SUPPORT PROGRAMS
# -----------------------------------------------------------------------------
ftp_user memp@emp.ru
ftp_list_width 64
ftp_passive on
ftp_sanitycheck off
dns_timeout 5 minutes
dns_nameservers <ip>
redirect_program /usr/local/squid/etc/redirect
redirect_children 5
auth_param ntlm program /usr/local/squid/libexec/wb_ntlmauth
auth_param ntlm children 10
auth_param ntlm max_challenge_reuses 0
auth_param ntlm max_challenge_lifetime 2 minutes
auth_param basic program /usr/local/squid/libexec/wb_auth
auth_param basic children 10
auth_param basic realm Proxy-server AIS-Pokachi
auth_param basic credentialsttl 5 minutes
authenticate_ttl 5 minutes
# OPTIONS FOR TUNING THE CACHE
# -----------------------------------------------------------------------------
refresh_pattern ^ftp:       1440    20% 10080
refresh_pattern ^gopher:    1440    0%  1440
refresh_pattern .       0   20% 4320
quick_abort_min 16 KB2
quick_abort_max 16 KB
quick_abort_pct 95
# TIMEOUTS
# -----------------------------------------------------------------------------
half_closed_clients off
shutdown_lifetime 60 seconds

# ACCESS CONTROLS
# -----------------------------------------------------------------------------
acl intranet-ip dst <ip>/17 <ip>/16
acl intranet-dmn dstdomain xxxxxx.com
always_direct allow intranet-ip intranet-dmn

#  TAG: acl
acl _sams_Administrator proxy_auth "/usr/local/squid/etc/Administrator.sams"
acl _sams_users proxy_auth "/usr/local/squid/etc/users.sams"
acl _sams_chat url_regex "/usr/local/squid/etc/chat.sams"
acl _sams_porno url_regex "/usr/local/squid/etc/porno.sams"
acl _sams_admins_url url_regex "/usr/local/squid/etc/admins_url.sams"
acl _sams_Admin_path urlpath_regex "/usr/local/squid/etc/Admin_path.sams"
acl nord_admins proxy_auth "/usr/local/squid/etc/nord_admins"
acl nupdate url_regex nupdate
acl _link_Administrator proxy_auth "/usr/local/squid/etc/Administrator.link"
acl _link_users proxy_auth "/usr/local/squid/etc/users.link"
acl _link_chat url_regex "/usr/local/squid/etc/chat.link"
acl _link_porno url_regex "/usr/local/squid/etc/porno.link"
acl _link_admins_url url_regex "/usr/local/squid/etc/admins_url.link"
acl _link_Admin_path urlpath_regex "/usr/local/squid/etc/Admin_path.link"

acl OurNet dst <ip>/255.255.128.0
acl NeighborNet dst <ip>/255.255.0.0 <ip>/255.255.128.0
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src <ip>/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl Safe_ports port 80      # http
acl Safe_ports port 21      # ftp
acl Safe_ports port 443     # https
acl Safe_ports port 443     # snews
acl Safe_ports port 70      # gopher
acl Safe_ports port 210     # wais
acl Safe_ports port 1025-65535  # unregistered ports
acl Safe_ports port 280     # http-mgmt
acl Safe_ports port 488     # gss-http
acl Safe_ports port 591     # filemaker
acl Safe_ports port 777     # multiling http
acl Safe_ports port 5190    # multiling http
acl CONNECT method CONNECT

# ICQ
acl ICQ_DOMAIN          dstdomain       icq.com aol.com
acl ICQ_ADDR            dst             64.12.0.0/16 205.188.0.0/16
acl ICQ_PORT            port            5190 433
acl SSL_ports port 443
acl UDP_ports port 443
acl ICQ_PROTO           proto           HTTPS
http_access   allow  _link_Administrator  ICQ_ADDR ICQ_PORT ICQ_PROTO CONNECT
http_access   allow  _link_users  ICQ_ADDR ICQ_PORT ICQ_PROTO CONNECT
always_direct   allow  ICQ_DOMAIN ICQ_PORT CONNECT
always_direct   allow  ICQ_ADDR   ICQ_PORT CONNECT

#  TAG: http_access
http_access allow _sams_Administrator
http_access allow _sams_users  !_sams_chat !_sams_porno !_sams_admins_url !_sams_Admin_path
http_access deny nupdate !nord_admins
http_access deny _link_admins_url !_link_Administrator
http_accesshttp_access deny _link_Admin_path !_link_Administrator
_link_chat !_link_Administrator
http_access allow NeighborNet
http_access allow OurNet
#http_access deny !Safe_ports
http_access allow CONNECT _link_users Safe_ports
http_access allow CONNECT _link_Administrator Safe_ports
#http_access allow all CONNECT  Safe_ports _link_Administrator
#http_access allow all CONNECT  Safe_ports _link_users
http_access deny CONNECT !Safe_ports
http_access allow localhost
http_access deny all
http_reply_access allow all
icp_access allow all

# ADMINISTRATIVE PARAMETERS
# -----------------------------------------------------------------------------
cache_mgr loewa@xxxxxx.com
cache_effective_user squid
cache_effective_group squid
# MISCELLANEOUS
# -----------------------------------------------------------------------------
append_domain xxxxx.com
forwarded_for off
cachemgr_passwd <pass> info stats/objects
error_directory /usr/local/squid/share/errors/Russian-koi8-r deny
# DELAY POOL PARAMETERS (all require DELAY_POOLS compilation option)
# -----------------------------------------------------------------------------
#  TAG: delay_pools
#  TAG: delay_class
delay_pools 2
delay_class 1 2
delay_class 2 2
delay_access 1 allow _sams_Administrator
delay_access 1 deny all
delay_parameters 1 524288/524288 524288/524288
delay_access 2 allow _sams_users
delay_access 2 deny all
delay_parameters 2 256000/256000 256000/256000
coredump_dir /var/spool/squid

Удалить Правка | Высказать мнение | Ответить | Рекомендовать в FAQ | Cообщить модератору | Наверх

Архив | Удалить

Индекс форумов | Темы | Пред. тема | След. тема

Оцените тред (1=ужас, 5=супер)? [ 1 | 2 | 3 | 4 | 5 ]

Пожалуйста, прежде чем написать сообщение, ознакомьтесь с данными рекомендациями.

Партнёры:

Хостинг:

Закладки на сайте
Проследить за страницей

Created 1996-2024 by Maxim Chirkov
Добавить, Поддержать, Вебмастеру

1. "assertion failed: acl.c:1198: 'authenticateUserAuthenticated..."
Сообщение от loewa on 17-Июн-05, 14:44 (MSK)
Дополнение cache.log 2005/06/17 10:19:48\| sslReadServer: FD 81: read failure: (54) Connection reset by peer 2005/06/17 10:37:13\| sslReadServer: FD 67: read failure: (54) Connection reset by peer 2005/06/17 10:54:50\| AuthenticateNTLMHandleReply: invalid callback data. Releasing helper '0x81f4990'. 2005/06/17 10:59:44\| AuthenticateNTLMHandleReply: invalid callback data. Releasing helper '0x81f4990'. 2005/06/17 11:13:18\| assertion failed: acl.c:1198: "authenticateUserAuthenticated(auth_user_request)" 2005/06/17 11:13:21\| Starting Squid Cache version 2.5.STABLE4 for i386-unknown-freebsd5.0... Мой squid.conf # created by SAMS _sams_ 2005-6-17 11:48:57 # NETWORK OPTIONS # ----------------------------------------------------------------------------- # TAG: http_port http_port 172.26.140.30:3128 dead_peer_timeout 60 seconds hierarchy_stoplist cgi-bin ? acl QUERY urlpath_regex cgi-bin \? no_cache deny QUERY # OPTIONS WHICH AFFECT THE CACHE SIZE # ----------------------------------------------------------------------------- cache_mem 2 MB cache_swap_low 90 cache_swap_high 95 maximum_object_size 4096 KB minimum_object_size 0 KB maximum_object_size_in_memory 4 KB ipcache_size 1024 ipcache_low 90 ipcache_high 95 fqdncache_size 1024 cache_replacement_policy lru memory_replacement_policy lru # LOGFILE PATHNAMES AND CACHE DIRECTORIES # ----------------------------------------------------------------------------- cache_dir ufs /usr/local/squid/var/cache 900 10 256 cache_access_log /cache/log/access.log cache_log /cache/log/cache.log cache_store_log /cache/log/store.log emulate_httpd_log off log_ip_on_direct on log_mime_hdrs off pid_filename /cache/log/squid.pid log_fqdn off client_netmask 255.255.255.255 # OPTIONS FOR EXTERNAL SUPPORT PROGRAMS # ----------------------------------------------------------------------------- ftp_user memp@emp.ru ftp_list_width 64 ftp_passive on ftp_sanitycheck off dns_timeout 5 minutes dns_nameservers <ip> redirect_program /usr/local/squid/etc/redirect redirect_children 5 auth_param ntlm program /usr/local/squid/libexec/wb_ntlmauth auth_param ntlm children 10 auth_param ntlm max_challenge_reuses 0 auth_param ntlm max_challenge_lifetime 2 minutes auth_param basic program /usr/local/squid/libexec/wb_auth auth_param basic children 10 auth_param basic realm Proxy-server AIS-Pokachi auth_param basic credentialsttl 5 minutes authenticate_ttl 5 minutes # OPTIONS FOR TUNING THE CACHE # ----------------------------------------------------------------------------- refresh_pattern ^ftp: 1440 20% 10080 refresh_pattern ^gopher: 1440 0% 1440 refresh_pattern . 0 20% 4320 quick_abort_min 16 KB2 quick_abort_max 16 KB quick_abort_pct 95 # TIMEOUTS # ----------------------------------------------------------------------------- half_closed_clients off shutdown_lifetime 60 seconds # ACCESS CONTROLS # ----------------------------------------------------------------------------- acl intranet-ip dst <ip>/17 <ip>/16 acl intranet-dmn dstdomain xxxxxx.com always_direct allow intranet-ip intranet-dmn # TAG: acl acl _sams_Administrator proxy_auth "/usr/local/squid/etc/Administrator.sams" acl _sams_users proxy_auth "/usr/local/squid/etc/users.sams" acl _sams_chat url_regex "/usr/local/squid/etc/chat.sams" acl _sams_porno url_regex "/usr/local/squid/etc/porno.sams" acl _sams_admins_url url_regex "/usr/local/squid/etc/admins_url.sams" acl _sams_Admin_path urlpath_regex "/usr/local/squid/etc/Admin_path.sams" acl nord_admins proxy_auth "/usr/local/squid/etc/nord_admins" acl nupdate url_regex nupdate acl _link_Administrator proxy_auth "/usr/local/squid/etc/Administrator.link" acl _link_users proxy_auth "/usr/local/squid/etc/users.link" acl _link_chat url_regex "/usr/local/squid/etc/chat.link" acl _link_porno url_regex "/usr/local/squid/etc/porno.link" acl _link_admins_url url_regex "/usr/local/squid/etc/admins_url.link" acl _link_Admin_path urlpath_regex "/usr/local/squid/etc/Admin_path.link" acl OurNet dst <ip>/255.255.128.0 acl NeighborNet dst <ip>/255.255.0.0 <ip>/255.255.128.0 acl all src 0.0.0.0/0.0.0.0 acl manager proto cache_object acl localhost src <ip>/255.255.255.255 acl to_localhost dst 127.0.0.0/8 acl Safe_ports port 80 # http acl Safe_ports port 21 # ftp acl Safe_ports port 443 # https acl Safe_ports port 443 # snews acl Safe_ports port 70 # gopher acl Safe_ports port 210 # wais acl Safe_ports port 1025-65535 # unregistered ports acl Safe_ports port 280 # http-mgmt acl Safe_ports port 488 # gss-http acl Safe_ports port 591 # filemaker acl Safe_ports port 777 # multiling http acl Safe_ports port 5190 # multiling http acl CONNECT method CONNECT # ICQ acl ICQ_DOMAIN dstdomain icq.com aol.com acl ICQ_ADDR dst 64.12.0.0/16 205.188.0.0/16 acl ICQ_PORT port 5190 433 acl SSL_ports port 443 acl UDP_ports port 443 acl ICQ_PROTO proto HTTPS http_access allow _link_Administrator ICQ_ADDR ICQ_PORT ICQ_PROTO CONNECT http_access allow _link_users ICQ_ADDR ICQ_PORT ICQ_PROTO CONNECT always_direct allow ICQ_DOMAIN ICQ_PORT CONNECT always_direct allow ICQ_ADDR ICQ_PORT CONNECT # TAG: http_access http_access allow _sams_Administrator http_access allow _sams_users !_sams_chat !_sams_porno !_sams_admins_url !_sams_Admin_path http_access deny nupdate !nord_admins http_access deny _link_admins_url !_link_Administrator http_accesshttp_access deny _link_Admin_path !_link_Administrator _link_chat !_link_Administrator http_access allow NeighborNet http_access allow OurNet #http_access deny !Safe_ports http_access allow CONNECT _link_users Safe_ports http_access allow CONNECT _link_Administrator Safe_ports #http_access allow all CONNECT Safe_ports _link_Administrator #http_access allow all CONNECT Safe_ports _link_users http_access deny CONNECT !Safe_ports http_access allow localhost http_access deny all http_reply_access allow all icp_access allow all # ADMINISTRATIVE PARAMETERS # ----------------------------------------------------------------------------- cache_mgr loewa@xxxxxx.com cache_effective_user squid cache_effective_group squid # MISCELLANEOUS # ----------------------------------------------------------------------------- append_domain xxxxx.com forwarded_for off cachemgr_passwd <pass> info stats/objects error_directory /usr/local/squid/share/errors/Russian-koi8-r deny # DELAY POOL PARAMETERS (all require DELAY_POOLS compilation option) # ----------------------------------------------------------------------------- # TAG: delay_pools # TAG: delay_class delay_pools 2 delay_class 1 2 delay_class 2 2 delay_access 1 allow _sams_Administrator delay_access 1 deny all delay_parameters 1 524288/524288 524288/524288 delay_access 2 allow _sams_users delay_access 2 deny all delay_parameters 2 256000/256000 256000/256000 coredump_dir /var/spool/squid
Удалить	Правка \| Высказать мнение \| Ответить \| Рекомендовать в FAQ \| Cообщить модератору \| Наверх

Архив \| Удалить	Индекс форумов \| Темы \| Пред. тема \| След. тема
Оцените тред (1=ужас, 5=супер)? [ 1 \| 2 \| 3 \| 4 \| 5 ]