Updated: Squid 2.4Stable7
Tue Jul 16 06:54:00 GMT 2002
Squid, the popular web proxy cache has been updated to 2.4 STABLE 7. All
users are advised to upgrade,as this release fixes security issues, and
also links against the current cygwin regex library code. The new
version will be available on your favorite mirror shortly.
Due to a packaging bug in the last release of squid, the /etc/squid.conf
and /etc/mime.conf files will be deleted when you upgrade squid. If you
want to preserve your settings you must take a copy of those files
Your cache contents will not be affected by the upgrade.
To update your installation, click on the "Install Cygwin now" link
on the http://cygwin.com/ web page. This downloads setup.exe to
your system. Save it and run setup, answer the questions and pick
up 'guile' from the 'Interpreters' category.
Note that downloads from sources.redhat.com (aka cygwin.com) aren't
allowed due to bandwidth limitations. This means that you will need
to find a mirror which has this update.
In the US, ftp://mirrors.rcn.net/mirrors/sources.redhat.com/cygwin/
is a reliable high bandwidth connection, and already up to date.
In Japan, use ftp://ftp.u-aizu.ac.jp/pub/gnu/gnu-win32/ .
In Denmark, http://mirrors.sunsite.dk/cygwin/ is already up-to-date.
If one of the above doesn't have the latest version of this package
you can either wait for the site to be updated or find another
Please send questions or comments to the Cygwin mailing list at:
firstname.lastname@example.org. If you want to subscribe go to:
http://cygwin.com/lists.html. I would appreciate if you would use
this mailing list rather than emailing me directly. This includes
ideas and comments about the setup utility or Cygwin in general.
If you want to make a point or ask a question the Cygwin mailing
list is the appropriate place.
Changes to Squid-2.4.STABLE7 (July 2, 2002):
- Squid now drops any requests using transfer-encoding.
Squid is a HTTP/1.0 proxy and as such do not support
the use of transfer-encoding.
- The MSNT auth helper has been updated to v2.0.3+fixes for
buffer overflow security issues found in this helper.
- A security issue in how Squid forwards proxy authentication
credentials has been fixed
- Minor changes to support Apple MAC OS X and some other
- The client -T option has been implemented
- HTCP related bugfixes in "squid -k reconfigure"
- Several bugfixes and cleanup of the Gopher client, both
to correct some security issues and to make Squid properly
render certain Gopher menus.
- FTP data channels are now sanity checked to match the address
the requested FTP server. This to prevent theft or injection
data. See the new ftp_sanitycheck directive if this is not
- Security fixes in how Squid parses FTP directory listings into
More information about the Cygwin-announce