hi! i'm searching for proxies for a application-level firewall - unfortunatly suse released only the ftp-proxy, the TIS toolkit isn't free for commercial use. anybody out there who knows a http-proxy to be used for firewalls? AFIK squid only does caching while proxies on a firewall should do quite more. ciao Rupert
Rupert Koenig wrote:
i'm searching for proxies for a application-level firewall - unfortunatly suse released only the ftp-proxy, the TIS toolkit isn't free for commercial use.
anybody out there who knows a http-proxy to be used for firewalls? AFIK squid only does caching while proxies on a firewall should do quite more.
Depends (of course) on what you need. Rinetd is a tcp proxy, uredir an udp proxy. Apache can be used as proxy. Perhaps you can specify your needs, otherwise this list might be quit long. Another possibility is to search on freshmeat for 'proxy'. Regards, Fred Mobach
Rupert Koenig wrote:
hi! i'm searching for proxies for a application-level firewall - unfortunatly suse released only the ftp-proxy, the TIS toolkit isn't free for commercial use.
anybody out there who knows a http-proxy to be used for firewalls?
No no! Squid is a real proxy. What do you want to do with
your proxy?
Regards. Frank
--
Frank Fiene
On Wed, Mar 29, 2000 at 04:18:56PM +0200, Frank Fiene wrote:
No no! Squid is a real proxy. What do you want to do with your proxy?
thought, it would be nice for a firewall if the proxy: - only has a connection to server OR client - does checks for mallicious java(-script) if i cought that right all traffic between browser and web-server hast to pass the proxy - so it should be possible to examine the transmitted java-code. what helps the best firewall if someone could get acces to local filesystems via java...afik nearly all versions of netscape and MSIE are affected by java-problems. thx Rupert
* Rupert Koenig wrote on Wed, Mar 29, 2000 at 16:50 +0200:
thought, it would be nice for a firewall if the proxy: - only has a connection to server OR client
How would this work with i.e. HTTP? The proxy had to close the client connection before connecting the server, then client would get no data - what did I miss?
- does checks for mallicious java(-script)
It would be another possiblity to use a (internal) cacheing proxy with such filter options (and virus checking!), so the proxy on the firewall could kept simpler - and because of that the risk of bug would be smaller.
what helps the best firewall if someone could get acces to local filesystems via java...afik nearly all versions of netscape and MSIE are affected by java-problems.
Well, to go sure you had to filter a lot, activeX and other executables, encrypted messages (which could contain a virus, trojan or backdoor which cannot even be checked by a virus scanner)... oki, Steffen -- Dieses Schreiben wurde maschinell erstellt, es trägt daher weder Unterschrift noch Siegel.
participants (4)
-
Frank Fiene -
Fred Mobach -
Rupert Koenig -
Steffen Dettmer