Univention Bugzilla – Full Text Bug Listing |
Summary: | Custom ACL snippets in squid.conf | ||
---|---|---|---|
Product: | UCS@school | Reporter: | Sönke Schwardt-Krummrich <schwardt> |
Component: | ucs-test | Assignee: | Ammar Najjar <najjar> |
Status: | RESOLVED FIXED | QA Contact: | |
Severity: | enhancement | ||
Priority: | P5 | CC: | best, walkenhorst |
Version: | UCS@school 4.0 | ||
Target Milestone: | --- | ||
Hardware: | Other | ||
OS: | Linux | ||
What kind of report is it?: | --- | What type of bug is this?: | --- |
Who will be affected by this bug?: | --- | How will those affected feel about the bug?: | --- |
User Pain: | Enterprise Customer affected?: | ||
School Customer affected?: | ISV affected?: | ||
Waiting Support: | Flags outvoted (downgraded) after PO Review: | ||
Ticket number: | Bug group (optional): | ||
Max CVSS v3 score: | |||
Bug Depends on: | 37543 | ||
Bug Blocks: | 39098 |
Description
Sönke Schwardt-Krummrich
2015-04-14 11:45:03 CEST
A new script with the name '43_proxy/05_custom_ACL_snippets_in_squidconf' is created to test the mentioned bug, including: - Testing user-agent string with acl_types 'browser','browser-i' - Testing destination domain name with acl_types 'dstdomain', 'dstdomain-i' - Test the destination port number using an internal http server and network redirection via iptables. Note1: for 'dstdomain' which defines a case sensitive domain name rule, it was not possible to request a case sensitive domain name, so the test implemented this case to be as if the string was small case. Note2: for ports numbers, the allowed ones are only (21, 443, 80), because of a top default rule: acl web_ports port 80 acl web_ports port 443 acl web_ports port 21 http_access deny !web_ports Tested on single server (master, backup) and multi server environments (master, slave). |