[squid-users] messy default configuration?

From: Rost, Werner <[email protected]>
Date: Thu, 11 Apr 2002 17:03:38 +0200

The default configuration file squid.conf contains following lines:

acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http

Using these lines the client program

    /usr/local/squid/bin/client -vp 8080 mgr:config

shows:

acl Safe_ports port 80
acl Safe_ports port 0
acl Safe_ports port 0
acl Safe_ports port 21
acl Safe_ports port 0
acl Safe_ports port 0
acl Safe_ports port 443
acl Safe_ports port 563
acl Safe_ports port 0
acl Safe_ports port 0
acl Safe_ports port 0
acl Safe_ports port 70
acl Safe_ports port 0
acl Safe_ports port 0
acl Safe_ports port 210
acl Safe_ports port 0
acl Safe_ports port 0
acl Safe_ports port 1025-65535
acl Safe_ports port 0
acl Safe_ports port 0
acl Safe_ports port 0
acl Safe_ports port 280
acl Safe_ports port 0
acl Safe_ports port 0
acl Safe_ports port 488
acl Safe_ports port 0
acl Safe_ports port 0
acl Safe_ports port 591
acl Safe_ports port 0
acl Safe_ports port 0
acl Safe_ports port 777
acl Safe_ports port 0
acl Safe_ports port 0
acl Safe_ports port 0

Though not defined port 0 is seen very often.

After deleting the comments for these lines

acl Safe_ports port 80
acl Safe_ports port 21
acl Safe_ports port 443 563
acl Safe_ports port 70
acl Safe_ports port 210
acl Safe_ports port 1025-65535
acl Safe_ports port 280
acl Safe_ports port 488
acl Safe_ports port 591
acl Safe_ports port 777

the client shows

acl Safe_ports port 80
acl Safe_ports port 21
acl Safe_ports port 443
acl Safe_ports port 563
acl Safe_ports port 70
acl Safe_ports port 210
acl Safe_ports port 1025-65535
acl Safe_ports port 280
acl Safe_ports port 488
acl Safe_ports port 591
acl Safe_ports port 777

which looks much better.

Are there any disadvantages with save-port 0 ?

> Mit freundlichen Gr��en / regards
> Werner Rost
>
> ---------------------------------------------------------------------
> ZF Boge GmbH
> Werner Rost
> IT
> Friesdorfer Str. 175
> D-53175 Bonn
>
>
> phone: +49/228/3825 420
> fax: +49/228/3825 398
> werner.rost@zfboge.com
>
> www.boge-vibrationcontrol.com
> ---------------------------------------------------------------------
>
>

---------------------------------------------------------
This Mail has been checked for Viruses
Attention: Encrypted mails can NOT be checked!

**

Diese Mail wurde auf Viren geprueft
Hinweis: Verschluesselte mails koennen NICHT auf Viren geprueft werden!
---------------------------------------------------------
Received on Thu Apr 11 2002 - 09:00:49 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:07:32 MST