Maybe its about the restricted squid config but is valid and often used :
forwarded_for off
via off
header_access From deny all
header_access Referer deny all
header_access Server deny all
header_access User-Agent deny all
header_access WWW-Authenticate deny all
header_access Link deny all