-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathsquid.conf
More file actions
34 lines (24 loc) · 856 Bytes
/
squid.conf
File metadata and controls
34 lines (24 loc) · 856 Bytes
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
http_port 127.0.0.1:3128
# Whitelist of allowed domains (extracted from http-domain-whitelist in opencode-sandbox-config.yaml)
acl whitelist dstdomain "/etc/squid/squid-whitelist.txt"
# Restrict proxy access to localhost only (prevents Docker-bridge peers from using this proxy)
acl localnet src 127.0.0.1/32
# Standard port ACLs
acl SSL_ports port 443
acl Safe_ports port 80
acl Safe_ports port 443
acl CONNECT method CONNECT
# Deny CONNECT to non-SSL ports
http_access deny CONNECT !SSL_ports
# Deny requests to non-safe ports
http_access deny !Safe_ports
# Allow whitelisted domains from localhost only
http_access allow localnet whitelist
# Deny everything else
http_access deny all
# Suppress access log noise to stdout
access_log none
cache_log /dev/null
cache_store_log none
# Suppress all squid debug/startup messages
debug_options ALL,0