[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] Qube 3 Squid runs as Open Relay Proxy by default

Subject: Re: [cobalt-security] Qube 3 Squid runs as Open Relay Proxy by default
From: Tim Dunn <tdunn@xxxxxxxxxxxxxxxxxxx>
Date: Thu, 18 Jul 2002 09:44:48 -0700 (PDT)
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

>>> Qube 3 is running as an Open Relay Proxy and can therefore be used 
>>> for email spamming through the Squid port on the ppp connection 
>>> when dialed up.

>> Simplest solution is to get a hardware firewall and have it *not*
>> forward port 3128 to the Qube.

> Woldn't the simpler solution be to [re]configure squid to not be
> an open relay?  This hardly seems a problem that needs hardware
> thrown at it...

Yah, one of the elided parts was that he tried doing some edits, but
something on the was was automagically prepending "Allow all" or
something equally rapeable to the squid.conf.  In my view, a $100
investment (and a small amount of setup time) is a good stop-gap
until he can figure out what's doing the unwanted edits.

tim

-- 
Sysadmin Rule #14: If it's not on fire, it's a software issue.

Follow-Ups:
- Re: [cobalt-security] Qube 3 Squid runs as Open Relay Proxy by default
  - From: Wim Dieke
- Re: [cobalt-security] Qube 3 Squid runs as Open Relay Proxy by default
  - From: Brian Reichert

References:
- Re: [cobalt-security] Qube 3 Squid runs as Open Relay Proxy by default
  - From: Brian Reichert

Prev by Date: Re: [cobalt-security] Qube 3 Squid runs as Open Relay Proxy by default
Next by Date: Re: [cobalt-security] Qube 3 Squid runs as Open Relay Proxy by default
Previous by thread: Re: [cobalt-security] Qube 3 Squid runs as Open Relay Proxy by default
Next by thread: Re: [cobalt-security] Qube 3 Squid runs as Open Relay Proxy by default

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index