| Soren Aalto on Tue, 24 Jun 2003 15:04:51 +0200 (SAST) |
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
| [GLUG-tech] Re: proxy aware worm/badness using port 443? |
On Tue, Jun 24, 2003 at 02:07:46PM +0200, Buchan Milne wrote: > > But you guys auth for https don't you? So, if it is a worm, it's > authenticated. If it's p2p, it's authenticated ... > > => Let the poor sods who typed in their username/password pay, they are > pushing up your utilisation, so you should be making more money, so why > should you worry? ...embarrasing that you should mention this. The staff users aren't subject to quotas and are mostly unaware of any accounting...it's only the students who have quotas enforced (and the student labs have to be kept away from the staff proxy as the students seem to discover staff logins with monotonous regularity). Authentication for staff went away just recently, temporarily. For some reason, the staff proxy would occasionally kernel panic. Usually at the start of a long weekend just after I'd locked everything up. So last time, I got pissed with this and just set up a temporary squid w/o authentication on another box & hijacked the IP of the crashed machine, since I could do all this from home, but rebooting the crashed box would require a drive into campus and unlocking a large number of doors... And it's stayed like that until time appears to reinstall the original proxy server (which was admittedly running on RH6.1 or something like that). -- Soren Aalto <soren@xxxxxxxxxxxxxxx> Internet Services & Development University of Zululand --- To unsubscribe: send the line "unsubscribe glug-tech" in the subject of a mail to "glug-tech-request@xxxxxxxxxxxx". Problems? Email "glug-tech-admins@xxxxxxxxxxxx". Archives are at http://www.linux.org.za/Lists-Archives/