From owner-freebsd-isp Wed Sep 16 19:14:32 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id TAA13999 for freebsd-isp-outgoing; Wed, 16 Sep 1998 19:14:32 -0700 (PDT) (envelope-from owner-freebsd-isp@FreeBSD.ORG) Received: from beatrice.rutgers.edu (beatrice.rutgers.edu [165.230.209.143]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id TAA13962; Wed, 16 Sep 1998 19:14:17 -0700 (PDT) (envelope-from easmith@beatrice.rutgers.edu) Received: (from easmith@localhost) by beatrice.rutgers.edu (980427.SGI.8.8.8/970903.SGI.AUTOCF) id WAA14229; Wed, 16 Sep 1998 22:13:45 -0400 (EDT) From: "Allen Smith" Message-Id: <9809162213.ZM14227@beatrice.rutgers.edu> Date: Wed, 16 Sep 1998 22:13:45 -0400 In-Reply-To: Enkhyl "Re: Copyleft/BSD Copyright FTP Proxy Software" (Sep 16, 9:49pm) References: X-Mailer: Z-Mail (3.2.3 08feb96 MediaMail) To: Enkhyl , Chris Dillon Subject: Re: Copyleft/BSD Copyright FTP Proxy Software Cc: isp@FreeBSD.ORG, security@FreeBSD.ORG Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Sep 16, 9:49pm, Enkhyl (possibly) wrote: > On Wed, 16 Sep 1998, Chris Dillon wrote: > > The Squid Proxy and Object Cache handles both HTTP and FTP proxy and > > caching. It exists in the FreeBSD ports collection and more info can be > > found at http://squid.nlanr.net. It is in my experience a very good > > solution, and apparently very popular. > > This is fine if you don't mind massive buffer overflow potential. Squid is > not what I would call a security-minded piece of software. > > Just my $0.02 from perusing the source. The 1.2 version, albeit less stable than the 1.1 version, is improved in this respect, such as via replacing sprintf with snprintf. I'm planning on compiling any FTP proxy with libparanoia or similar in any event. -Allen -- Allen Smith easmith@beatrice.rutgers.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message