Todd > > Is a caching proxy *just* for performance then with > > no security value whatsoever? > > Realistically, yes. Depending on how far you go, though, you may > consider it a security value to not let the outside world know if you > re-request something. Say... to hide the number of computers behind > the proxy.
If I was more talented about such things maybe I would implement an http proxy but it seems like quite a lot of work for not much gain. I've heard that iptables does stateful filtering... I don't know exactly how that can help with html... if your proxy could filter out 'bad' html somehow that would be useful. I don't know if it would take more apps than iptables to filter out ads, javascript and stuff like that. CS -- KPLUG-List mailing list [email protected] http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
