Re: Squid Issue.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Hussain Faraz:
> http://thor.corpservers.net:7409/ 
>  
> this url was blocked from my squid proxy, and after using : setsebool
> -P squid_connect_any=1, this url has been unblocked and working fine, 

That would be about access via that port number, more than the address
itself.

> my Question is : What are the security risks involved? Is it possible
> to allow only this site? 
> 
If you read the Squid manual, it gives reasons about why you may block
access to unusual ports.  (Or it did, the last time I looked, but that
was a long time ago.)  And you should be able to add specific exceptions
to the Squid configuration.

Have a look at the Squid manual, then get back to us if you get stuck.
Have a look at ACLs.  You want to allow access to that address AND that
port, as a combination.  Perhaps that address with all normal ports plus
that one.

-- 
[tim@localhost ~]$ uname -r
2.6.27.25-78.2.56.fc9.i686

Don't send private replies to my address, the mailbox is ignored.  I
read messages from the public lists.



-- 
users mailing list
users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines


[Index of Archives]     [Current Fedora Users]     [Fedora Desktop]     [Fedora SELinux]     [Yosemite News]     [Yosemite Photos]     [KDE Users]     [Fedora Tools]     [Fedora Docs]

  Powered by Linux