On Wednesday 25 June 2003 08.37, atit jariwala wrote:
> Some sites are implementing SSL on non-standard SSL Port
> So squid's this behaviour is creating problem in surfing such
> site. I am planning to allow CONNECT on non-standard SSL Port as
> well but before that i want to know the reasons for default DENY
> action.
To protect from abuse of the proxy to connect to other services like
SMTP/IRC/whatever...
CONNECT opens a full duplex TCP transport tunnel via the proxy.
It is better if you just extend the ACL with the ports of troublesome
sites.
Regards
Henrikm
Received on Wed Jun 25 2003 - 02:26:12 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:17:38 MST