[EMAIL PROTECTED] wrote:
>
> Are there any known expolits for squid? If so where is the
> list/site located?
No known exploits for Squid exists.
What we was talking about was Web-server (usually CGI script) exploits
which can be conducted throught Squid to hide the attackers identity,
and how to stop such use of a proxy.
James Youg said that you could filter out URLs wich contains known
exploit constructs.
My point was that there is no way to filter out POST requests in this
way as the exploit data is then in the message body and not the URL.
---
Henrik Nordstrom
Spare time Squid hacker
