Great Circle Associates Firewalls
(June 1994) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Re: proxy service access revisited
From: Ian Dunkin <imd1707 @ ggr . co . uk>
Date: Wed, 15 Jun 1994 11:16:21 +0100 (BST)
To: Dan Sweeney <sweeney @ qdeck . com>
Cc: firewalls @ GreatCircle . COM
In-reply-to: <9406150000 . A19201 @ ccmail-gateway . qdeck . com>
Reply-to: Ian Dunkin <imd1707 @ ggr . co . uk> 
On Wed, 15 Jun 1994, Dan Sweeney wrote:

>                                   My impression is that it appears 
> httpd filtering rules can be implemented in two ways:
> 
> 1. When you install the 2.16 Beta SOCKS package enable client control  
>    functions by modifying the BUILD file by enabling     
>    -DCLIENT_CONTROL. 

Don't use this way; it's obsolete.  I added this code with the SOCKS
hooks for version 2.16 of the httpd (which Ari L was kind enough to
merge in), before the httpd configuration _itself_ allowed control over
which clients should be allowed proxy access, as a stopgap till they
did; and it used a separate control file expressly so that it stayed out
of the way of the real configuration and would be easy to rip out
afterwards. 

But since version 2.17, the httpd's own configuration options have
indeed allowed control over client access.  With far more granularity,
in fact.  Use them instead. 

    I.

-- 
Ian Dunkin <imd1707 @
 ggr .
 co .
 uk>
--
References:
Indexed By Date Previous: reserved addresses
From: hobbit @ bronze . lcs . mit . edu (*Hobbit*)
Next: Re: using socks to hide internal IP addresses
From: bmanning @ is . rice . edu (William Manning)
Indexed By Thread Previous: Re: proxy service access revisited
From: Dan Sweeney <sweeney @ qdeck . com>
Next: Re: proxy service access revisited
From: "Ross Patterson" <n4yyh @ mott . sensor . com>
Google
 
Search Internet Search www.greatcircle.com