[EMAIL PROTECTED] wrote:

Is a caching proxy *just* for performance then with
no security value whatsoever?

Chris

On Tue, Jan 25, 2005 at 12:39:42PM -0800, Michael O'Keefe wrote:


[EMAIL PROTECTED] wrote:


Block all ports, redirect port 80 to a caching proxy and only
allow that proxy access through port 80 on the firewall.


What is value of redirecting all http traffic thru a proxy?
That just lets the proxy view the traffic that passes by
unless I'm mistaken.


It's a caching proxy. So it caches it for you, and saves you hitting the
'Net the next time you get the same thing....


-- Michael O'Keefe | [EMAIL PROTECTED] Live on and Ride a 03 BMW F650GSDakar| [EMAIL PROTECTED] / | I like less more or less less than |Work:+1 858 845 3514 / | more. UNIX-live it,love it,fork() it |Fax :+1 858 845 2652 /_p_| My views are MINE ALONE, blah, blah, |Home:+1 760 788 1296 \`O'| blah, yackety yack - don't come back |Fax :+1 858 _/_\|_,

--

KPLUG-List mailing list
[email protected]
http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list




-- _______________________________________

Christian Seberino, Ph.D.
SPAWAR Systems Center San Diego
Code 2872
49258 Mills Street, Room 158
San Diego, CA 92152-5385
U.S.A.

Phone: (619) 553-9973
Fax : (619) 553-6521
Email: [EMAIL PROTECTED]
_______________________________________


heh, I had to chuckle at this, you could use the proxy to limkit where your users go, then as stated only allow web traffic from the designated proxy ip.

   Brian
--

KPLUG-List mailing list
[email protected]
http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list

Reply via email to