Squid Issue.
Tim
ignored_mailbox at yahoo.com.au
Tue Oct 19 19:40:18 UTC 2010
Hussain Faraz:
> http://thor.corpservers.net:7409/
>
> this url was blocked from my squid proxy, and after using : setsebool
> -P squid_connect_any=1, this url has been unblocked and working fine,
That would be about access via that port number, more than the address
itself.
> my Question is : What are the security risks involved? Is it possible
> to allow only this site?
>
If you read the Squid manual, it gives reasons about why you may block
access to unusual ports. (Or it did, the last time I looked, but that
was a long time ago.) And you should be able to add specific exceptions
to the Squid configuration.
Have a look at the Squid manual, then get back to us if you get stuck.
Have a look at ACLs. You want to allow access to that address AND that
port, as a combination. Perhaps that address with all normal ports plus
that one.
--
[tim at localhost ~]$ uname -r
2.6.27.25-78.2.56.fc9.i686
Don't send private replies to my address, the mailbox is ignored. I
read messages from the public lists.
More information about the users
mailing list