Hussain Faraz: > http://thor.corpservers.net:7409/ > > this url was blocked from my squid proxy, and after using : setsebool > -P squid_connect_any=1, this url has been unblocked and working fine, That would be about access via that port number, more than the address itself. > my Question is : What are the security risks involved? Is it possible > to allow only this site? > If you read the Squid manual, it gives reasons about why you may block access to unusual ports. (Or it did, the last time I looked, but that was a long time ago.) And you should be able to add specific exceptions to the Squid configuration. Have a look at the Squid manual, then get back to us if you get stuck. Have a look at ACLs. You want to allow access to that address AND that port, as a combination. Perhaps that address with all normal ports plus that one. -- [tim@localhost ~]$ uname -r 2.6.27.25-78.2.56.fc9.i686 Don't send private replies to my address, the mailbox is ignored. I read messages from the public lists. -- users mailing list users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
