Hello Jaime, ----- Original Message ----- From: "Jaime Nebrera Herrera" <[EMAIL PROTECTED]> To: "Victor Berdin" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> Sent: Wednesday, July 02, 2003 5:22 PM Subject: Re: [leaf-user] Safe transparent proxying via DS1.02 and Squid
[snip] > Why do you need the transparent proxy? Do you need a reverse proxy to speed > up web access (local cache), do you need load balancing, do you need extra > protection? Yes, I'm using it as a reverse proxy. > Do you run some kind of webmail? If the problem is spam related, most > probably your users are using your wemail system to send spam. In that case, > a proxy wont help you at all. You have to educate your users, impose some > restrictions (like number of emails a day a user can send) or improve your > user selection. Still, nothing to do with the proxy. No that is not that case at all. My internal net lay dormant as my box kept on receiving and automatically forwarding junk packets. > But I believe most probably you have been banned because of an open proxy. > In this case, your proxy does its work even with urls that you dont control > and this is bad. You have to configure the proxy to allow petitions only for > those domains you control and that are BEHIND the reverse proxy. > > > http://www.fr2.cyberabuse.org/?page=abuse-proxy > Reading this page clarifies ALL. Now my guess was right. You have not been > banned because of spam but because you have an OPEN RELAY proxy. Configure it > properly. Perhaps, but an e-mail from my ISP details that my box was used to send tons of spam. :o( > For local users I dont recall right now if SQUID allowed for different > behaviour in different interfaces. If yes, configure it properly, if not, try > to run two instances of squid or use a different box. It is highly possible that I'm not setting it up properly. And yeah, the DOCs are my friends. Plus I was so harsh/excited to place the box in the jungle right away soon as I got it up, without doing security tests. :o( I learned my lesson, the challenge now is to fix it. Thanks for your reply, Vic ------------------------------------------------------- This SF.Net email sponsored by: Free pre-built ASP.NET sites including Data Reports, E-commerce, Portals, and Forums are available now. Download today and enter to win an XBOX or Visual Studio .NET. http://aspnet.click-url.com/go/psa00100006ave/direct;at.asp_061203_01/01 ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
