[Gllug] spews blacklist/squid
Jason Clifford
jason at ukpost.com
Tue Jun 3 08:41:41 UTC 2003
On Mon, 2 Jun 2003, Alistair Mann wrote:
> Ha ha -- cheeky! What's happening is that Squid is being told to connect to a
> mailserver /as if/ it was a webserver running on port 25, then using the http
> request exchange to pass SMTP commands. Voila.
>
> OP asked if there was some method of blocking this. I'm not familiar with
> Squid's configuration file, but certainly iptables can handle it: block
> outbound traffic with -dport 25 and --cmd-owner /usr/local/bin/squid (or
> whatever).
Squid ACLs can be used to block this quite easily. Simply write a rule
that no connections are permitted to port 25 (or port 587) and your squid
cannot be used to relay email.
Jason Clifford
--
UKFSN.ORG Finance Free Software while you surf the 'net
http://www.ukfsn.org/ Sign up now
--
Gllug mailing list - Gllug at linux.co.uk
http://list.ftech.net/mailman/listinfo/gllug
More information about the GLLUG
mailing list