One may also note that nessus may generate false positives, as squid indeed does serve pages (with error messages) while trying to connect to forbidden ports. Just my $0.02, Thomas
-----Ursprüngliche Nachricht----- Von: Steffen Dettmer [mailto:steffen@dett.de] Gesendet: Dienstag, 24. April 2001 10:15 An: 'Suse-Security' (E-Mail) Betreff: Re: [suse-security] Security Problems with Squid 2.2 Stable 5
* Mario Enrico Ragucci wrote on Tue, Apr 24, 2001 at 03:46 +0200:
- The proxy allows the users to perform CONNECT requests like CONNECT http://cvs.nessus.org:23
Did you use:
acl SSL_ports port 443 563 acl Safe_ports port 80 81 85 21 443 563 70 210 1025-65535 acl CONNECT method CONNECT
http_access deny !Safe_ports http_access deny CONNECT !SSL_ports
otherwise give it a try.
oki,
Steffen
-- Dieses Schreiben wurde maschinell erstellt, es trägt daher weder Unterschrift noch Siegel.
--------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com