On Wed, Jul 23, 2003 at 05:25:45PM -0400, Cliff Woolley wrote: > Assuming it works, then I like it in as much as any anti-spam measure is > good in my opinion, but at the same time it doesn't stop people from > having open HTTP proxies by the same misconfiguration, which are harmful > to the Net at large (if in a different way). > I agree. From looking at my own access log on an empty site, there's even more attempts to proxy to all sorts of ports than iis worms. One very common and regularly attempted from ever changing ip's is: "CONNECT 1.3.3.7:1337 HTTP/1.0" The question is wether we can actually make the docs clear enough (seeing that people already ignore the big warning boxes) or maybe something stronger along the lines of -DBIG_SECURITY_HOLE is needed? or something less drastic like renaming ProxyRequests to ForwardProxy? I don't have any exact figures for this, but it does appear to me (looking at local rbl stats) that open proxies are becoming much more popular among spammers than the old open relays.
vh Mads Toftum -- `Darn it, who spiked my coffee with water?!' - lwall --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
