Date: Thu, 21 Feb 2002 10:09:25 -0500 From: Chris Faulhaber <jedgar@fxp.org> To: Alberto Manzoni <alberto.manzoni@univr.it> Cc: freebsd-security@freebsd.org Subject: Re: FreeBSD Ports Security Advisory FreeBSD-SA-02:12.squid Message-ID: <20020221150925.GA43867@peitho.fxp.org> In-Reply-To: <003f01c1bae8$8abb1520$53061b9d@univr.it> References: <003f01c1bae8$8abb1520$53061b9d@univr.it>
next in thread | previous in thread | raw e-mail | index | archive | help
--FL5UXtIhxfXey3p5 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Thu, Feb 21, 2002 at 04:00:46PM +0100, Alberto Manzoni wrote: > >4) No workaround exists for the HTCP issue except to set up a firewall > >rule to block incoming packets to the Squid HTCP port (normally, UDP > >port 4827) from untrusted hosts. >=20 > No way setting htcp_port 0 ?? >=20 Not according to the advisory released by the squid developers (and referenced in our advisory): http://www.squid-cache.org/Advisories/SQUID-2002_1.txt --=20 Chris D. Faulhaber - jedgar@fxp.org - jedgar@FreeBSD.org -------------------------------------------------------- FreeBSD: The Power To Serve - http://www.FreeBSD.org --FL5UXtIhxfXey3p5 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: FreeBSD: The Power To Serve iEYEARECAAYFAjx1DaUACgkQObaG4P6BelC26gCfRsnCLzL9/ibnjhhXvE9p2/ng GjsAn2GbYhsIs0kW9opGxbQVkuHzMiWA =R2Jb -----END PGP SIGNATURE----- --FL5UXtIhxfXey3p5-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020221150925.GA43867>