<article>
<title>Squid 3.0 release notes</title>
<author>Squid Developers</author>
-<date>$Id: release-3.0.sgml,v 1.8 2003/06/19 13:11:59 robertc Exp $</date>
+<date>$Id: release-3.0.sgml,v 1.9 2003/07/11 13:27:57 hno Exp $</date>
<abstract>
This document contains the release notes for version 3.0 of Squid.
<item>Properly quote the quoting character '%' in log_quote() and username_quote().
<item>in icmpRecv(), Handle the case when recv() returns EAGAIN and do not treat it like an error.
<item>Update squid to build with gcc/g++ 3.3 with no warnings.
+ <item>wb_group updated to support domain qualified groups (Guido Serassio)
+ <item>most helper interfaces now support multiple overlapping requests (external_acl_type, redirect_program, basic auth).
+ <item>digest authentication extended with support for common bugs in browser implementations
+ <item>custom log formats, and the ability to log different requests to different log files.
+ <item>ext_user acl type added for matching the user name returned by external acls. Not longer abusing the ident acl for this purpose
+ <item>external_acl extended with soft timeouts
+ <item>external_acl can optionally return information to be logged in access.log
</itemize>
<sect>Changes to squid.conf
<item>name=XXX
<item>forceddomain=XXX
</itemize>
-<tag>https_port</tag>New option : dhparams=/path/to/file.pem https_port option to specify DH parameters for forward-secrecy in encryption (practically denies decryption even if the private key is known from what I understand). (Henrik Nordstrom)
+<tag>https_port</tag>Many new options<itemize><item>dhparams=/path/to/file.pem https_port option to specify DH parameters for forward-secrecy in encryption (practically denies decryption even if the private key is known from what I understand). (Henrik Nordstrom)
+ <item>clientca= etc</item>specifies which CA to accept client certificates from
+ <item>defaultsite</item>specifies the accelerated site name
+ </itemize>
+<tag>http(s)_port</tag>Many new options to control acceleration, transparent proxying etc
<tag>header_replace</tag>This is now dependent on --disable-http-violations (Henrik Nordstrom)
<tag>email_err_data</tag>Allow disabling the data now embedded in the mailto links on Squid's ERR pages.
<tag>refresh_pattern</tag>Make the default refresh_pattern merely a suggested default. This is consistent with older Squid versions due to a bug in the "DEFAULT-IF-NONE" processing of refresh_pattern. (Henrik Nordstrom)
<tag>reply_body_max_size</tag>No longer uses allow/deny. Instead it is specified as a size followed by acl elements. The size "none" can be used for no limit (the default)
<tag>external_acl_type</tag>The argument which was named concurrenty= in Squid-2.5 is now named children=. concurrency= has a different meaing in Squid-3.0 and your external acls will not work until updated.
+<tag>ext_user acl</tag>this acl matches the username returned by external acl. ident can no longer be used for this purpose.
+<tag>access_log</tag>The access_log directive now optionally includes specifications on what log format to use and acls matching which requests to log. Can be specified multiple times to log different requests to different files.
+<tag>logformat</tag>new directive to define custom log formats
+<tag>httpd_accel_*</tag>These directives have been replaced by http(s)_port options. Note that you can no longer run proxy and acceleration mode on the same port. If you previously did this you now need to define two ports, one for acceleration, one for proxying.
+
</descrip>
<sect>Known limitations
projects / thirdparty / squid.git / commitdiff
