| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <41A72B10.6080504@elforsoft.com> From: raoul at elforsoft.com (Raoul Nakhmanson-Kulish) Subject: IE is just as safe as FireFox Hello, joe! >>Anyway, you can specify an unlimited amount of non-proxied servers in >>autoconfiguration script. More, you may modify autoconfig rules as >>frequently as needed, or even do it automatically. > Agreed. But if the idea is to protect your internal clients from your > intranet web servers, the proxy isn't doing much for you. General idea is prevent HTTP interaction with any LAN host which isn't a known intranet server. The proxy can and should do it. > Plus again, > someone can just configure their machine to not use the proxy as mentioned > previously. Again, we speak about fool-proofing, not about deliberate saboteurs. > This isn't something > that is reasonable to manage in a large organization and does nothing from > stopping people from selecting alternate ports. Port number is unrelated here. A browser tuned to use proxy uses it for HTTP on any port. -- Best regards, Raoul Nakhmanson-Kulish Elfor Soft Ltd., ERP Department http://www.elforsoft.ru/
Powered by blists - more mailing lists