On Thu, 2003-08-28 at 20:29, atit jariwala wrote: > Does this approach adds any Security Hole or Problem in Squid.
Yes, it allows cache poisoning. Any client could, for instance, put up a server somewhere with porn advertising, and then request: GET / HTTP/1.1 Host: www.microsoft.com and send the request to their server. It would then reply with their advertising page. Any one subsequently requesting www.microsoft.com will get this 'poisoned' page instead. Cheers Rob -- GPG key available at: <http://members.aardvark.net.au/lifeless/keys.txt>.
signature.asc
Description: This is a digitally signed message part
