httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Chris Knight <Christopher.D.Kni...@nasa.gov>
Subject Re: Spam Using SMTP "Over" HTTP-Proxy
Date Tue, 02 Sep 2003 18:14:16 GMT
Joshua Slive wrote:

>I think we've done pretty-much all we can.  I wouldn't mind putting a
>little note on the httpd.apache.org homepage saying "Have you secured your
>proxy?" and point to the correct docs.
>  
>
What about sending a warning message to stderr/error_log upon startup if 
the proxy is not access controlled?

...HTTPS proxying is even worse and could be used to mount a variety of 
TCP attacks.


Mime
View raw message