HI all
Ive been dambling in looking at the squid logs and seeing what various client spew out.
[User-Agent: Skype%99 1.4\r\nHost: ui.skype.com\r\nCache-Control: no-cache\r\n]
[User-Agent: Trillian/70 (Windows; I; 32-bit)\r\n]
So for those out there, I think its safe to say, you cant deny based on the client used, for e.g. MSN, skype etc.
But what I find interesting is that when I use Limewire, (Limewire was configured to use a proxy), I see the following
1131984629.391 344902 192.168.111.213 TCP_MISS/200 3213 CONNECT 66.65.39.72:6348 - DIRECT/66.65.39.72 - [] []
So my question, why would a client need / want to disguise its self, and do you not think it would be avisable / safe
to deny based on no client declaration been given. I sure this can help stop limewire etc.
Just something I was thinking.
Kind Regards
Brent Clark
