Re: [squid-users] Final Peer Reivew of Config

From: Eric Kahklen <eric@dont-contact.us>
Date: Wed, 10 Mar 2004 13:41:43 -0800

Thanks again for your helpful input!

Eric

Henrik Nordstrom wrote:

>On Wed, 10 Mar 2004, Eric Kahklen wrote:
>
>
>
>>I am getting ready test this out on the internet and wondered if anyone
>>could see any major security problems or miss configurations. I've
>>removed anything that I didn't think was necessary and left some things
>>in that I couldn't determine were needed or not. This is going to be
>>used for a reverse proxy (accelorator) with Exchange 2000. [Internet] -
>>[Firewall - port 443] - [Squid] - [Exchange/OWA - 2000]
>>
>>
>
>The configuration looks good from what I can tell..
>
>maybe you want to throw an "never_direct allow all" into the mix as a
>extra safeguard from future. There is an implicit "never_direct" on
>accelerated requests in Squid-3, but...
>
>Regards
>Henrik
>
>
>
>.
>
>
>
Received on Wed Mar 10 2004 - 14:41:45 MST

This archive was generated by hypermail pre-2.1.9 : Thu Apr 01 2004 - 12:00:02 MST