Re: acl's and redirect loops

From: Dancer <[email protected]>
Date: Mon, 26 Jul 1999 11:33:39 +1000

tom minchin wrote:
>
> On Mon, Jul 26, 1999 at 09:33:53AM +1000, Dancer wrote:
> > True. The basic ACL rejection mechanism provides a useful security tool,
> > if nothing else. Also, it allows us to cope with certain 'emergency'
> > conditions (There's one site where http://sitename/dirname/ redirects to
> > http://sitename/dirname/dirname/ which redirects to
> > http://sitename/dirname/dirname/dirname/ and so on forever. Oddly, and
> > we have yet to explore exactly why, this brings squid 2.2 to it's knees)
> >
>
> The philips.com search page has one of those "spirals of death" in it.
>
> tom@interact.net.au

I keep wondering quite how I can engineer an ACL type to foil them after
a few iterations, rather than trying to catch them manually. I can see a
couple ways, but nothing's firm in my head yet.

D
Received on Sun Jul 25 1999 - 19:18:30 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:47:33 MST