[TriLUG] IE Vulnerability brings up Squid Proxy question

Jon Carnes jonc at nc.rr.com
Thu Jun 10 16:55:28 EDT 2004


I haven't played with Squid in awhile, but I think what you want is
Squadguard (or a similar filter).

http://www.squidguard.org/faq/

You can't use "acl url proto URL" because URL is not a protocol.

On Thu, 2004-06-10 at 15:56, Smith, Brett wrote:
> I need to Filter "Location:" headers containing the "URL:" prefix in a proxy
> server.
> 
> because of this
> http://secunia.com/advisories/11793/
> 
> I saw how to filter FTP and I guess I could use the same trick for URL: 
> 
> acl ftp proto FTP
> acl myNet src 10.0.0.0/16
> acl all src 0.0.0.0/0.0.0.0
> http_access deny ftp
> http_access allow mynet
> http_access deny all
> 
> My ideas involve 
> <--
> acl url proto URL
> acl location proto Location
> http_access deny url
> http_access deny location
> -->
> Any ideas?
> 
> Brett Smith 
> IS Team 
> Bloodhound, Inc. 
> 2520 Meridian Parkway, Suite 500 
> Durham, N.C.  27713 
> (919) 313-1619 
> bsmith at bloodhoundinc.com 
> 
> This email message is for the sole use of the intended recipients(s) and may contain confidential and privileged information of Bloodhound Software, Inc.. Any unauthorized review, use, disclosure is prohibited. If you are not the intended recipient, please contact the sender by reply email and destroy all copies of the original message.




More information about the TriLUG mailing list