I have 10 proxy servers on WAN, and when I want to, for example, block a site,
its a waist of time for me to go to each one and add that name of that site. I
have everyting on externals lists. Is there a way to make a change on one of
my proxy servers (and call it the central server) and have
lör 2007-02-24 klockan 15:27 + skrev Paul:
> Well, its not that then - nothing in the access_log from apache.
> I think I might need to wait until it happens again and do some
> forensics then.
> I'm a little concerned that there's something on my box that shouldn't
> be there, but I've got goo
Thanks - no traffic to 3128 right now, unless I browse from my lan.
Nothing listening on 3128 except squid.
On Sat, 2007-02-24 at 17:21 +0200, Denys wrote:
> Just check
> tcpdump -n -i eth0 -X -s 1500 dst port SQUIDPORT
>
> SQUIDPORT i guess must be 3128
>
> Then just look, what kind of reques
Well, its not that then - nothing in the access_log from apache.
I think I might need to wait until it happens again and do some
forensics then.
I'm a little concerned that there's something on my box that shouldn't
be there, but I've got good commercial AV software running, and very
good strong pa
lör 2007-02-24 klockan 16:41 +0800 skrev Joel Bryan Juliano:
> I'm trying to do this because I have made a simple GUI for configuring
> squid on the system, there is a checkbutton to enable/disable squid
> and I'm looking for ways on how to hook with it. currently my approach
> is moving /etc/init
lör 2007-02-24 klockan 15:15 + skrev Paul:
> DAnsGuardian is on 8080 and that's closed to all but my lan. I do have
> 5801 and 5901 open for remote desktop, but I doubt that's a problem.
> Is there a way to misconfigure apache2 to enable open proxy?
Yes, if you have mod_proxy enabled..
you sh
Just check
tcpdump -n -i eth0 -X -s 1500 dst port SQUIDPORT
SQUIDPORT i guess must be 3128
Then just look, what kind of requests there, maybe you will see headers of
software, possible dansguardian headers.
Also try to stop dansguardian and see if it logs still continue.
Do
netstat -anp|grep
DAnsGuardian is on 8080 and that's closed to all but my lan. I do have
5801 and 5901 open for remote desktop, but I doubt that's a problem.
Is there a way to misconfigure apache2 to enable open proxy?
On Sat, 2007-02-24 at 09:21 +0100, Henrik Nordstrom wrote:
> lör 2007-02-24 klockan 08:28 +0100
Dansguardian + SQUID
==
My System at first time
( Linux + SQUID )
( act as gateway internet + proxy for LAN )
it' s work very nice.
( ACL and others config. in squid )
After i 'm install dansguardian and config. and use it.
My ACL List in My SQUID not working
such as : example
Why is my script getting lines such as these:
http://mydomain.com:3128/http/mydomain.com/80/popup_calendar.gif
These are sprinkled among the good expected lines such as:
http://localhost:3128/VirtualHostBase/...
Do I need to redirect the former also? And to where?
Any help appreciated
Hi
The best thing to have done is tighten up what sockets are listening if
you have socklist utility
run # socklist this should show tcp/udp sockets that are listening and
thus open.
Thus any sockets that are listening investigate what there are and why
you need them.
Run some tools like n
On 2/24/07, Henrik Nordstrom <[EMAIL PROTECTED]> wrote:
lör 2007-02-24 klockan 09:51 +0800 skrev Joel Bryan Juliano:
> Is there a way to turn off and on squid by just editing the
> configuration files?
No, but by stopping/starting the service.
stop: /usr/local/sbin/squid -k shutdown
start: /u
lör 2007-02-24 klockan 08:28 +0100 skrev Henrik Nordstrom:
> To diagnose after you have made changes somehow stopping the abuse then
> checking all logs in detail is the only available, or maybe tcpdump
> looking for users still trying to access the service and from that
> derive how they gained a
Joel Bryan Juliano wrote:
> Is there a way to turn off and on squid by just editing the
> configuration files?
Even easier. Start or stop the daemon.
14 matches
Mail list logo
