Re: proposal to remove port 563 from default ACLs

2006-10-03 Thread Henrik Nordstrom
tis 2006-10-03 klockan 00:35 +0200 skrev Henrik Nordstrom:

> I have actually used it in in real life. Was a some vendor support forum
> NNTP server requiring authentication and encryption to protect the
> passwords. But I have no problem with removing the port from the
> suggested default configuration as it's not at all common and easy to
> add back if needed. Most have switched to using web forums anyway.. This
> vendor actually provided both nntps and https access methods to the same
> forums. Unfortunately I don't remember the vendor, but it was one of the
> large commercial software vendors with active user communities.

Looking around I saw that gmane also has nttps support in addition to
their nntp and http interfaces..

Regards
Henrik


signature.asc
Description: Detta är en digitalt signerad	meddelandedel


Re: proposal to remove port 563 from default ACLs

2006-10-02 Thread Henrik Nordstrom
fre 2006-09-29 klockan 16:07 -0600 skrev Duane Wessels:
> Our default ACL configuration allows CONNECT requests to port 563,
> which is for NNTP over SSL.  Assuming that nobody really uses NNTP
> over SSL, especially through an HTTP proxy, I suggest that we
> remove it from the defaults.

I have actually used it in in real life. Was a some vendor support forum
NNTP server requiring authentication and encryption to protect the
passwords. But I have no problem with removing the port from the
suggested default configuration as it's not at all common and easy to
add back if needed. Most have switched to using web forums anyway.. This
vendor actually provided both nntps and https access methods to the same
forums. Unfortunately I don't remember the vendor, but it was one of the
large commercial software vendors with active user communities.

Regards
Henrik


signature.asc
Description: Detta är en digitalt signerad	meddelandedel


Re: proposal to remove port 563 from default ACLs

2006-09-30 Thread Kinkie

On Sat, 2006-09-30 at 18:33 +0200, Guido Serassio wrote:
> Hi,
>
> At 03.34 30/09/2006, Robert Collins wrote:
> >On Fri, 2006-09-29 at 16:07 -0600, Duane Wessels wrote:
> > > Our default ACL configuration allows CONNECT requests to port 563,
> > > which is for NNTP over SSL.  Assuming that nobody really uses NNTP
> > > over SSL, especially through an HTTP proxy, I suggest that we
> > > remove it from the defaults.
> >
> >Agreed.
>
> +1

++votes;

--
Kinkie <[EMAIL PROTECTED]>



Re: proposal to remove port 563 from default ACLs

2006-09-30 Thread Guido Serassio

Hi,

At 03.34 30/09/2006, Robert Collins wrote:

On Fri, 2006-09-29 at 16:07 -0600, Duane Wessels wrote:
> Our default ACL configuration allows CONNECT requests to port 563,
> which is for NNTP over SSL.  Assuming that nobody really uses NNTP
> over SSL, especially through an HTTP proxy, I suggest that we
> remove it from the defaults.

Agreed.


+1

Regards

Guido



-

Guido Serassio
Acme Consulting S.r.l. - Microsoft Certified Partner
Via Lucia Savarino, 1   10098 - Rivoli (TO) - ITALY
Tel. : +39.011.9530135  Fax. : +39.011.9781115
Email: [EMAIL PROTECTED]
WWW: http://www.acmeconsulting.it/



Re: proposal to remove port 563 from default ACLs

2006-09-29 Thread Robert Collins
On Fri, 2006-09-29 at 16:07 -0600, Duane Wessels wrote:
> Our default ACL configuration allows CONNECT requests to port 563,
> which is for NNTP over SSL.  Assuming that nobody really uses NNTP
> over SSL, especially through an HTTP proxy, I suggest that we
> remove it from the defaults.

Agreed.

Rob
-- 
GPG key available at: .


signature.asc
Description: This is a digitally signed message part


proposal to remove port 563 from default ACLs

2006-09-29 Thread Duane Wessels

Our default ACL configuration allows CONNECT requests to port 563,
which is for NNTP over SSL.  Assuming that nobody really uses NNTP
over SSL, especially through an HTTP proxy, I suggest that we
remove it from the defaults.