Arun Shrimali wrote:
Dear all,
I am using Squid 2.6 Stable 4 on fedora 6 with NCSA authentication.
Some of my windows users want to use ftp to upload files.
Please use a more recent squid. Those below stable 11 have serious
security issues.
Can any body help what / where should I configure so that (few
specific) users can use ftp.
The "proto" ACL type can be used to make an *_access line match only
"FTP" protocol for either allow/deny.
http://www.squid-cache.org/Version/v2/2.6/cfgman/acl.html
so:
acl noFTP proto FTP
http_access deny noFTP localnet
would block all users from accessing FTP, etc.
Amos
