On Wednesday 15 August 2018 at 21:09:57, Oldman wrote:
> Thanks
>
> I won't change any thing unless I am sure here.
Well, you've certainly changed quite a lot of the standard config in the file
you showed us earlier.
> What was dangerous ? Did you mean I could be hacked with that
> configuration file?
I seriously doubt you can be "hacked" (whatever you specifically mean by that)
but only because you are running the Squid proxy on a domestic network and it
is therefore almost certainly unreachable from the Internet.
However, defining "safe ports" to be "any port at all" means your proxy can be
used for quite a number of protocols other than HTTP/S (for example, SMTP) and
since this is almost certainly not what you want this proxy to be (ab)used
for, you should stick the the default definition of safe ports which is
designed to prevent this sort of abuse.
Just out of interest, what made you make the changes you did to the standard
config?
Antony.
--
"The future is already here. It's just not evenly distributed yet."
- William Gibson
Please reply to the list;
please *don't* CC me.
_______________________________________________
squid-users mailing list
squid-users@xxxxxxxxxxxxxxxxxxxxx
http://lists.squid-cache.org/listinfo/squid-users
