[RFC] bug 2894: snmp_access async lookups

From: Amos Jeffries <squid3_at_treenet.co.nz>
Date: Sat, 31 Dec 2011 19:34:01 +1300

As pointed out in http://bugs.squid-cache.org/show_bug.cgi?id=2894
having snmp_access as a fast lookup allows admin to unexpectedly
configure a security hole when access denial depends on an async test.

Other than speed and discouraging the use of async ACLs in SNMP security
checks is there any known reasons to keep this control as a fast check?

Amos
Received on Sat Dec 31 2011 - 06:34:12 MST

This message: [ Message body ]
Next message: Kinkie: "Re: [PATCH] Makefile for bootstrap"
Previous message: Henrik Nordström: "Re: [PATCH] Makefile for bootstrap"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

This archive was generated by hypermail 2.2.0 : Sat Dec 31 2011 - 12:00:11 MST