[Nottingham] apache or squid for proxying?
Martin
martin at ml1.co.uk
Wed Oct 14 15:24:02 UTC 2009
Mike Cardwell wrote:
[---]
> Transparent web proxies have an inherant security flaw though...
[---]
> In essence, if you have a transparent web proxy, and you visit a website
> with a Java app like I described, it can make http requests against any
> website it likes, from your very own PC.
Rather interesting.
What do ISPs do to block that?
Wouldn't a simple firewall rule to block direct connects to the proxy IP
address thwart such maliciousness?
Still, certainly a bit of nefariousness to look out for!
Cheers,
Martin
--
----------------
Martin Lomas
martin at ml1.co.uk
----------------
More information about the Nottingham
mailing list