+Changes to squid-3.5.8 (02 Sep 2015):
+
+ - Regression Bug 4306: build portability fix in Kerberos helpers
+ - Bug 4302: IPFilter v5 transparent interception
+ - Bug 4301: compile errors with IPFilter interception
+ - Bug 4285 partial: %us is not supported in access.log
+ - Bug 4278: Docs: typo in the refresh_pattern freshness algorithm
+ - Bug 4242: compile errors with eCAP using clang-3.6
+ - Bug 3696: crash when client delay pools are activated
+ - Bug 3553: cache_swap_high ignored and maxCapacity used instead
+ - Regression Fix: FtpServer.cc:1024: "reply != NULL" assertion
+ - Fix ignore of impossible SSL bumping actions, as intended and documented
+ - Fix memory leak in Surrogate-Capability header detection
+ - Fix truncated body length when RESPMOD service aborts
+ - Reject non-chunked HTTP messages with conflicting Content-Length values
+ - Support splice for SSLv3 and TLSv1 sessions that start with an SSLv2 Hello
+ - ... and several portability and compile fixes
+ - ... and several documentation updates
+
Changes to squid-3.5.7 (01 Aug 2015):
- Bug 4293: wrong SNI sent to server after URL-rewrite
## Please see the COPYING and CONTRIBUTORS files for details.
##
-AC_INIT([Squid Web Proxy],[3.5.7-BZR],[http://bugs.squid-cache.org/],[squid])
+AC_INIT([Squid Web Proxy],[3.5.8-BZR],[http://bugs.squid-cache.org/],[squid])
AC_PREREQ(2.61)
AC_CONFIG_HEADERS([include/autoconf.h])
AC_CONFIG_AUX_DIR(cfgaux)
<!doctype linuxdoc system>
<article>
-<title>Squid 3.5.7 release notes</title>
+<title>Squid 3.5.8 release notes</title>
<author>Squid Developers</author>
<abstract>
<sect>Notice
<p>
-The Squid Team are pleased to announce the release of Squid-3.5.7.
+The Squid Team are pleased to announce the release of Squid-3.5.8.
This new release is available for download from <url url="http://www.squid-cache.org/Versions/v3/3.5/"> or the
<url url="http://www.squid-cache.org/Download/http-mirrors.html" name="mirrors">.
acl aclname localip ip-address/mask ... # IP address the client connected to [fast]
acl aclname arp mac-address ... (xx:xx:xx:xx:xx:xx notation)
- # The arp ACL requires the special configure option --enable-arp-acl.
- # Furthermore, the ARP ACL code is not portable to all operating systems.
- # It works on Linux, Solaris, Windows, FreeBSD, and some
- # other *BSD variants.
# [fast]
+ # The 'arp' ACL code is not portable to all operating systems.
+ # It works on Linux, Solaris, Windows, FreeBSD, and some other
+ # BSD variants.
#
- # NOTE: Squid can only determine the MAC address for clients that are on
- # the same subnet. If the client is on a different subnet,
- # then Squid cannot find out its MAC address.
+ # NOTE: Squid can only determine the MAC/EUI address for IPv4
+ # clients that are on the same subnet. If the client is on a
+ # different subnet, then Squid cannot find out its address.
+ #
+ # NOTE 2: IPv6 protocol does not contain ARP. MAC/EUI is either
+ # encoded directly in the IPv6 address or not available.
acl aclname srcdomain .foo.com ...
# reverse lookup, from client IP [slow]
LOC: Config.ssl_client.options
TYPE: string
DOC_START
- SSL implementation options to use when proxying https:// URLs
+ Colon (:) or comma (,) separated list of SSL implementation options
+ to use when proxying https:// URLs
The most important being:
See the OpenSSL SSL_CTX_set_options documentation for a
complete list of possible options.
+
+ WARNING: This directive takes a single token. If a space is used
+ the value(s) after that space are SILENTLY IGNORED.
DOC_END
NAME: sslproxy_cipher
projects / thirdparty / squid.git / commitdiff
