Re: [squid-users] [squid-user] Failing to serve cached objects

From: Henrik Nordstrom <[email protected]>
Date: Sun, 6 Feb 2005 11:57:32 +0100 (CET)

On Sun, 6 Feb 2005 johnsuth@acenet.com.au wrote:

> # TAG: http_access
> #Recommended minimum configuration:
> http_access allow manager localhost
> http_access deny manager
> http_access deny !Safe_ports
> http_access deny to_localhost
> http_access allow government
> http_access allow education
> http_access allow google
> http_access allow acenet
> http_access allow localnet
> http_access deny ip
> http_access deny http
> http_access allow www

I do not think you want to use the above ruleset.

1. You have removed important abuse control rules for no apparent reason.

2. You have NOT limited which clients may access your proxy.

3. Read squid faq chapter 10.1 Access control - Introduction for a
in-depth description of how the http_access rules works.

REgards
Henrik
Received on Sun Feb 06 2005 - 03:57:36 MST

This archive was generated by hypermail pre-2.1.9 : Tue Mar 01 2005 - 12:00:01 MST