Date: Tue, 20 May 2003 12:23:27 +1000 (EST) From: Sean <sean@gothic.net.au> To: Tom Samplonius <tom@sdf.com> Cc: freebsd-isp@freebsd.org Subject: Re: Illegal use of my server?? Message-ID: <20030520122211.J54488@visi.gothic.net.au> In-Reply-To: <Pine.BSF.4.05.10305191637460.2996-100000@misery.sdf.com> References: <Pine.BSF.4.05.10305191637460.2996-100000@misery.sdf.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 19 May 2003, Tom Samplonius wrote: > > On Mon, 19 May 2003, Joseph T. Klein wrote: > > > The Squid package and port should have a *big* warning sign on them > > about this. > > I know of at least one network that was blacklisted due to the lack of > > tight > > ACLs on Squid. > ... > > The Squid port should probably ship with a default-deny rule. As it already does: 12:21 sean@old [/usr/local/etc/squid] grep ^http_access squid.conf.default http_access allow manager localhost http_access deny manager http_access deny !Safe_ports http_access deny CONNECT !SSL_ports http_access deny all > > As far I can see, every IP on the Internet is port scanned at least > several times a day. If you have something that is wide-open, it will be > found very quickly. > > > Tom > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030520122211.J54488>