Re: [squid-users] can any transparent mode handle SSL and FTP for access control from Henrik Nordstrom on 2006-12-11 (squid-users)

From: Henrik Nordstrom <henrik@dont-contact.us>
Date: Tue, 12 Dec 2006 05:46:33 +0100

tis 2006-12-12 klockan 08:13 +0800 skrev Adrian Chadd:

> Apparently the old cisco cache engines implemented -something- to do with
> transparent FTP proxying but I've been concentrated on the web cache service
> stuff.

Most clients do not verify the server identity on the data channel, so
you only need to intercept port 21, then run the data channel as if they
connected directly to you.

But some clients do verify the data channel to actually be from/to the
requested server...

Regards
Henrik

application/pgp-signature attachment: Detta är en digitalt signerad meddelandedel

Received on Mon Dec 11 2006 - 21:46:51 MST

This archive was generated by hypermail pre-2.1.9 : Mon Jan 01 2007 - 12:00:01 MST