| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon Nov 14 11:09:51 2005 From: andrew2005 at ledge.co.za (Andrew McGill) Subject: Blocking Skype Polarizer wrote, > > acl connect method CONNECT > > This line is not necessary since standard squid.conf contains this line: > > acl CONNECT method CONNECT > > so simply use the uppercase version (squid does not check upper and lower case > in acl names) > > > # Apply your acls > > http access deny connect numerics_IPs all > > Respect :O) Two typos in just one line. With CONNECT mentioned above: > > http_access deny CONNECT numeric_IPs all > > instead of > > http access deny connect numerics_IPs all > > BTW: I'm sure, it will break a lot of other things but skype, too. Allowing only authenticated web access blocks skype: acl PASSWORD proxy_auth REQUIRED http_access allow PASSWORD http_access deny all Admittedly, this was the configuration, and it was impossible to *allow* skype. Although Skype understands the concept of a proxy server, it doesn't understand the concept of authentication --or at least, when it really matters, it doesn't try to authenticate, very much like MSN messenger. NTLM auth would block it even harder, I suspect. &:-)
Powered by blists - more mailing lists