Re: khttpd

Janos Farkas (Janos.Farkas-nouce/priv-#Ip1ZBNnliBmbFiM93lFfFJhHN4G@lk8rp.mail.xeon.eu.org)
Thu, 10 Jun 1999 17:07:55 +0200

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: DAVID BALAZIC: "Partition nightmare Was: Migrating to larger numbers"
Previous message: Dinesh Nair: "Re: Why I run FreeBSD - SunOS, Solaris, Linux? No, thanks!"

On 1999-06-10 at 14:03:56, H. Peter Anvin wrote:
> By author: felix@convergence.de
> > Recent squid versions disallow port 81 through the proxy, so people will
> > see broken images.
> What about the ports 8000 and 8080, both of which are frequently used
> for http? (If Squid blocks them all, I would consider that a bug in
> Squid.)

No need to worry, "squid" doesn't block anything, its admin does; it's
just the function to do that is more visible; admins are more
"paranoid"; maybe Felix assumed the default acl to deny CONNECT-ing to
random ports also involves restricting http GET, it's not, since it's
not directly as dangerous.

I've put the word paranoid in quotes because the people who do something
like that do things like blocking any ICMP traffic too, and that's not
called paranoia...

-- Janos - Don't worry, my address is real. I'm just bored of spam.

- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.rutgers.edu Please read the FAQ at http://www.tux.org/lkml/

Next message: DAVID BALAZIC: "Partition nightmare Was: Migrating to larger numbers"
Previous message: Dinesh Nair: "Re: Why I run FreeBSD - SunOS, Solaris, Linux? No, thanks!"