system environment/daemons

frontier-squid - The Frontier distribution of the Squid proxy caching server

License: GPL
Vendor: Koji
Description:
Squid is a high-performance proxy caching server for Web clients,
supporting FTP, gopher, and HTTP data objects. Unlike traditional
caching software, Squid handles all requests in a single,
non-blocking, I/O-driven process. Squid keeps meta data and especially
hot objects cached in RAM, caches DNS lookups, supports non-blocking
DNS lookups, and implements negative caching of failed requests.  This
squid distribution has been expecially tuned to work with the Frontier
server to cache Database entries retrieved from an ORACLE back-end,
particularly its need for the http standard If-Modified-Since feature.

Packages

frontier-squid-5.9-2.1.osg23.el8.x86_64 [10.3 MiB] Changelog by Carl Vuosalo (2024-01-11):
- Apply security patches from Squid 6 to address security concerns since 
    a version of Squid 6 suitable for frontier-squid is not available yet.
 - The following security vulnerabilities have been addressed with patches:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46724
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46847
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46848
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-49285
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-50269
    https://github.com/squid-cache/squid/security/advisories/GHSA-j83v-w3p4-5cqh
 - The following two vulnerabilities are addressed by disabling Gopher and TRACE
    requests, respectively, in the squid.conf.proto file:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-46728
    https://megamansec.github.io/Squid-Security-Audit/trace-uaf.html
 - To support SELinux, require /sbin/restorecon and apply it to the log directory,
    in addition to the cache directory.
 - Update to shoal-1.0.2 to fix setting of external_ip.

Listing created by Repoview-0.6.6-4.el7