[Zope-CMF] Running Zope behind Squid on the same host
sean.upton@uniontrib.com
sean.upton@uniontrib.com
Mon, 28 Apr 2003 09:53:50 -0700
Quick open-relay test howto for a Squid accelerator:
1 - create a mock SMTP session in a text editor that you can cut and paste
from later. You can use http://cr.yp.to/smtp/client.html as a quick quide
to SMTP.
2 - issue the following to your squid in a telnet session like:
CONNECT squidipaddr:25 HTTP/1.0
3 - After this line hit enter, and paste in your first SMTP line.
At some point, you should get an access denied error if Squid is configured
correctly.
Sean
-----Original Message-----
From: J C Lawrence [mailto:claw@kanga.nu]
Sent: Monday, April 28, 2003 9:22 AM
To: Marc Lindahl
Cc: zope-cmf@zope.org
Subject: Re: [Zope-CMF] Running Zope behind Squid on the same host
On Sun, 27 Apr 2003 22:48:39 -0400
Marc Lindahl <marc@bowery.com> wrote:
> FWIW you never contacted me concerning the FAQ... it's worked for me,
> with 3 separate computers.
True, and while I don't recall the specifics of my problems, my primary
recollection was that it took an approach that was different than I
wanted.
> Also concerning your note about Squid security -- I STRONGLY advise
> anyone using Squid to thoroughly understand this...
Quite, that's why I made the note. Squid is not difficult to configure,
or to configure securely as a relay. Its also fairly easy to test for
being an open relay.
> ... my first try at it (relying on defaults) made me a SMTP relay
> (yes, spammers use Squid to relay port 25!).
Yup, enough of my spam load has been routed thru WinGate, open SOCKS
proxies, and misconfigured Squid boxen to be noticeable.
--
J C Lawrence
---------(*) Satan, oscillate my metallic sonatas.
claw@kanga.nu He lived as a devil, eh?
http://www.kanga.nu/~claw/ Evil is a name of a foeman, as I live.
_______________________________________________
Zope-CMF maillist - Zope-CMF@zope.org
http://mail.zope.org/mailman/listinfo/zope-cmf
See http://collector.zope.org/CMF for bug reports and feature requests