Re: Squid remote administration
From: Patrick Duane Dunston (duane@sukkha.homeip.net)Date: 08/18/01
- Previous message: Philip Ching (605.734.71): "SSL connection"
- In reply to: Bruno Gimenes Pereti: "Squid remote administration"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sat, 18 Aug 2001 11:09:37 -0400 (EDT) From: Patrick Duane Dunston <duane@sukkha.homeip.net> To: <security-discuss@linuxsecurity.com> Subject: Re: Squid remote administration Message-ID: <Pine.LNX.4.33.0108181057080.5669-100000@ilm25-40-047.ec.rr.com>
> I need allow the labs administrator to control the access in the squid. I'll
> try Webmin but before it I would like to know if you all use it and if it
> don't have any known security problem or if there is any other option.
Hey,
There have been some security bugs with squid. You can search on
linuxsecurity.com for a history of the vulnerabilities. The latest
versions aren't affected by those though. Also, a common misconfiguration
is with acl rules. Be sure to only allow the machines on your
network access to the squid proxy, else outsiders will be able to use
your machine as a proxy. You can configure that in the squid config
files but you should also configure your firewall to only allow your local
network access to the proxy (multiple layers of defense).
-- duane...
Love doesn't make the world go 'round. Love is what makes the ride worthwhile. --Franklin P. Jones
--
GnuPG Public Key: http://sukkha.homeip.net/pgp.html
--
------------------------------------------------------------------------ To unsubscribe email security-discuss-request@linuxsecurity.com with "unsubscribe" in the subject of the message.
- Previous message: Philip Ching (605.734.71): "SSL connection"
- In reply to: Bruno Gimenes Pereti: "Squid remote administration"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
