SQUID

**inbox** · 02-26-2012, 02:30 PM

which of ya can install and config squid for me on my vps

**reefer** · 02-26-2012, 03:59 PM

i had someone do this for me for $30 on freelancer

be careful though because my server also got infected and i blame him.

**inbox** · 02-26-2012, 04:56 PM

Originally Posted by reefer

i had someone do this for me for $30 on freelancer

be careful though because my server also got infected and i blame him.

that's a rip off

**reefer** · 02-26-2012, 05:07 PM

i was making $500+/day at the time, $30 didn't matter lol

**inbox** · 02-26-2012, 05:18 PM

Originally Posted by reefer

i was making $500+/day at the time, $30 didn't matter lol

lol true

**Audio** · 02-26-2012, 06:51 PM

$25

**Kobal** · 02-26-2012, 08:21 PM

Originally Posted by inbox

that's a rip off

rofl, this niggah trippen over 30$....

**reefer** · 02-26-2012, 09:07 PM

now that i look at it, it looks mad easy to setup

http://www.deckle.co.za/squid-users-guide/Main_Page

**Brizz** · 02-26-2012, 11:32 PM

Originally Posted by Kobal

rofl, this niggah trippen over 30$....

$30 may be nothin..but getting infected def can be $xxx,xxx depending on person.....saying its 'no big deal' is ignorant.

**inbox** · 02-27-2012, 12:12 PM

Originally Posted by reefer

now that i look at it, it looks mad easy to setup

http://www.deckle.co.za/squid-users-guide/Main_Page

+rep and http://errajib.hubpages.com/hub/Inst...prise-Linux-5-

**inbox** · 02-27-2012, 01:13 PM

having trouble, welp

Code:

[root@clmiami ~]#/etc/init.d/squid start
init_cache_dir /var/spool/squid... /etc/init.d/squid: line 62:  9849 Aborted                         $SQUID -z -F -D >> /var/log/squid/squid.out 2>&1
Starting squid: /etc/init.d/squid: line 42:  9850 Aborted                 $SQUID         $SQUID_OPTS >> /var/log/squid/squid.out 2>&1
                                                           [FAILED]

**Napolean** · 02-27-2012, 01:56 PM

looks like just a config error?

but yeah squid is pretty easy to set up, heres a windows config template. if you absolutely cant modify this to work on linux I can get the config from my freebsd server.

Code:

http_port 5309

emulate_httpd_log on
cache_store_log none
cache_access_log c:/squid/var/logs/access.log

client_netmask 255.255.255.0

auth_param basic program c:/squid/libexec/ncsa_auth.exe c:/squid/etc/htpasswd.txt
auth_param basic children 5
auth_param basic realm General Squid
auth_param basic credentialsttl 24 hours
auth_param basic casesensitive off

client_lifetime 24 hours

acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl Safe_ports port 80          # http
acl Safe_ports port 21          # ftp
acl Safe_ports port 443 563     # https, snews
acl Safe_ports port 70          # gopher
acl Safe_ports port 210         # wais
acl Safe_ports port 1025-65535  # unregistered ports
acl Safe_ports port 280         # http-mgmt
acl Safe_ports port 488         # gss-http
acl Safe_ports port 591         # filemaker
acl Safe_ports port 777         # multiling http
acl CONNECT method CONNECT

acl [AuthenticatedUser1] proxy_auth [AuthenticatedUser1]
http_access allow localhost
http_access allow [AuthenticatedUser1]
http_access deny all
tcp_outgoing_address [OutgoingIpAddress] [AuthenticatedUser1]
forwarded_for off
via off

request_header_access Via deny all
request_header_access X-Forwarded-For deny all
request_header_access From deny all
request_header_access Referer deny all
request_header_access Server deny all
request_header_access WWW-Authenticate deny all
request_header_access Link deny all

cache_effective_user proxy_auth
cache_effective_group proxy_auth
visible_hostname mprox.mservices.com
client_db off

this may be from an older version of squid too. but the last dozen lines are meant to make it super anonymous, so even if an app your using leaks your ip, squid will still remove it from the header.

the cache_effective_user and cache_effective_group lines will have to be changed if your using linux otherwise you will get permission errors. you will usually just have to change proxy_auth to squid or whatever user squid is running under.

You change AuthenticatedUser1 to whatever your username(s) will be, and OutgoingIpAddress to the IP address you will be assigning to AuthenticatedUser1. You can also add AuthenticatedUser2, 3, 4 etc, assigning more IP addresses to them.

You use any htpasswd generator to make the htpasswd file. Also make sure you installed the ncsa_auth helper, that's important.

**inbox** · 02-27-2012, 02:01 PM

Originally Posted by Napolean

looks like just a config error?

but yeah squid is pretty easy to set up, heres a windows config template. if you absolutely cant modify this to work on linux I can get the config from my freebsd server.

Code:

http_port 5309

emulate_httpd_log on
cache_store_log none
cache_access_log c:/squid/var/logs/access.log

client_netmask 255.255.255.0

auth_param basic program c:/squid/libexec/ncsa_auth.exe c:/squid/etc/htpasswd.txt
auth_param basic children 5
auth_param basic realm General Squid
auth_param basic credentialsttl 24 hours
auth_param basic casesensitive off

client_lifetime 24 hours

acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl Safe_ports port 80          # http
acl Safe_ports port 21          # ftp
acl Safe_ports port 443 563     # https, snews
acl Safe_ports port 70          # gopher
acl Safe_ports port 210         # wais
acl Safe_ports port 1025-65535  # unregistered ports
acl Safe_ports port 280         # http-mgmt
acl Safe_ports port 488         # gss-http
acl Safe_ports port 591         # filemaker
acl Safe_ports port 777         # multiling http
acl CONNECT method CONNECT

acl [AuthenticatedUser1] proxy_auth [AuthenticatedUser1]
http_access allow localhost
http_access allow [AuthenticatedUser1]
http_access deny all
tcp_outgoing_address [OutgoingIpAddress] [AuthenticatedUser1]
forwarded_for off
via off

request_header_access Via deny all
request_header_access X-Forwarded-For deny all
request_header_access From deny all
request_header_access Referer deny all
request_header_access Server deny all
request_header_access WWW-Authenticate deny all
request_header_access Link deny all

cache_effective_user proxy_auth
cache_effective_group proxy_auth
visible_hostname mprox.mservices.com
client_db off

this may be from an older version of squid too. but the last dozen lines are meant to make it super anonymous, so even if an app your using leaks your ip, squid will still remove it from the header.

the cache_effective_user and cache_effective_group lines will have to be changed if your using linux otherwise you will get permission errors. you will usually just have to change proxy_auth to squid or whatever user squid is running under.

You change AuthenticatedUser1 to whatever your username(s) will be, and OutgoingIpAddress to the IP address you will be assigning to AuthenticatedUser1. You can also add AuthenticatedUser2, 3, 4 etc, assigning more IP addresses to them.

You use any htpasswd generator to make the htpasswd file. Also make sure you installed the ncsa_auth helper, that's important.

that's the thing, i know 0 linux

**Napolean** · 02-27-2012, 02:21 PM

Originally Posted by inbox

that's the thing, i know 0 linux

its pretty much the same thing, just a few subtle line changes:

Code:

http_port 5309

emulate_httpd_log on
cache_store_log none

client_netmask 255.255.255.0

auth_param basic program /usr/local/libexec/squid/ncsa_auth /usr/local/etc/htpasswd
auth_param basic children 8
auth_param basic realm General Squid
auth_param basic credentialsttl 24 hours
auth_param basic casesensitive off

client_lifetime 24 hours

acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.1/8
acl SSL_ports port 443 563
acl Safe_ports port 80          # http
acl Safe_ports port 21          # ftp
acl Safe_ports port 443 563     # https, snews
acl Safe_ports port 70          # gopher
acl Safe_ports port 210         # wais
acl Safe_ports port 1025-65535  # unregistered ports
acl Safe_ports port 280         # http-mgmt
acl Safe_ports port 488         # gss-http
acl Safe_ports port 591         # filemaker
acl Safe_ports port 777         # multiling http
acl CONNECT method CONNECT

acl [AuthenticatedUser1] proxy_auth [AuthenticatedUser1]
acl [AuthenticatedUser2] proxy_auth [AuthenticatedUser2]
acl [AuthenticatedUser3] proxy_auth [AuthenticatedUser3]

http_access allow localhost
http_access allow [AuthenticatedUser1]
http_access allow [AuthenticatedUser2]
http_access allow [AuthenticatedUser3]
http_access deny all
tcp_outgoing_address [OutoingIpAddress1] [AuthenticatedUser1]
tcp_outgoing_address [OutoingIpAddress2] [AuthenticatedUser2]
tcp_outgoing_address [OutoingIpAddress3] [AuthenticatedUser3]

forwarded_for off
via off

header_access Via deny all
header_access X-Forwarded-For deny all
header_access From deny all
header_access Referer deny all
header_access Server deny all
header_access WWW-Authenticate deny all
header_access Link deny all

visible_hostname mprox.mservices.com
client_db off

I added extra AuthenticatedUsers and OutgoingIpAddress lines to show how to add more than 1 in case it wasn't clear enough.

building squid or installing it is pretty straight forward, its usually the conf file that gives people the most trouble, but this is the conf file I'm using on FreeBSD.

**Kobal** · 02-27-2012, 07:38 PM

Originally Posted by Brizz

$30 may be nothin..but getting infected def can be $xxx,xxx depending on person.....saying its 'no big deal' is ignorant.

dont hire fuckboys

Thread: SQUID

Thread Tools

Display

SQUID

Bookmarks

Bookmarks

Posting Permissions