Hi mike,
Mike Marchywka a écrit :
> [snip]
>> Normal website attacks.
>>
>> One of the benefits of using Squid is to prevent these resource wasters
>> getting near the backend processors. "Failed to select source" is good
>> news.
>>
>> You might also want to occasionally scan the access.log to see if any
>> foreign requests do get through (2xx or 3xx status). If any do you have
>> a problem, otherwise everything is fine.
>>
>
> I think we had our's up for maybe 1 day before it was discovered.
> We just added our own headers for authentication. Not sure this
> is always an option but if you can restrict by IP or UA or something
> that may be the easiest thing to do.
>
Sure, this could be great, but this will not help us I think.
We're using squid as a reverse proxy, so anyone can tell squid : "please
give me this static content or this image". I can't see how can i
restrict this. :)
Regards
David.
Received on Mon Nov 23 2009 - 15:32:41 MST
This archive was generated by hypermail 2.2.0 : Mon Nov 23 2009 - 12:00:04 MST