Re: [squid-users] When worlds collide from Henrik Nordstrom on 2008-07-14 (squid-users)

From: Henrik Nordstrom <henrik_at_henriknordstrom.net>
Date: Mon, 14 Jul 2008 08:18:36 +0200

On sön, 2008-07-13 at 15:55 +1200, Amos Jeffries wrote:

> Out of luck. Domain hijacking like this is precisely why squid doesn't
> trust the client-given dst IP in transparent mode.
>
> They will have to:
>
> a) connect to that domain using raw IP address in the URL.
>
> b) negotiate with the proxy admin to configure the proxy to selectively
> do the SNEAKY.EXAMPLE.COM redirect for them.

or c) Teach their client to CONNECT to the site, establishing a direct
connection via the proxy..

Regards
Henrik

application/pgp-signature attachment: This is a digitally signed message part

Received on Mon Jul 14 2008 - 06:18:42 MDT

This archive was generated by hypermail 2.2.0 : Mon Jul 14 2008 - 12:00:03 MDT