Mailinglist Archive: opensuse-security (670 mails)
| < Previous | Next > |
RE: [suse-security] Limit Squid Port Range
- From: Markus Gaugusch <markus@xxxxxxxxxxx>
- Date: Tue, 13 Nov 2001 12:07:51 +0100 (CET)
- Message-id: <Pine.LNX.4.40.0111131206510.9012-100000@xxxxxxxxxxxxxxxx>
> with Squid's ACLs, you can assign safe_ports for the cache to use.
safe_ports is only the list of ports, squid is allowed to connect TO.
(destination). This is still useful, because there have been
vulnerabilities, that could have been prevented by filtering destination
ports.
Markus
--
_____________________________ /"\
Markus Gaugusch ICQ 11374583 \ / ASCII Ribbon Campaign
markus@xxxxxxxxxxx X Against HTML Mail
/ \
safe_ports is only the list of ports, squid is allowed to connect TO.
(destination). This is still useful, because there have been
vulnerabilities, that could have been prevented by filtering destination
ports.
Markus
--
_____________________________ /"\
Markus Gaugusch ICQ 11374583 \ / ASCII Ribbon Campaign
markus@xxxxxxxxxxx X Against HTML Mail
/ \
| < Previous | Next > |