> Date: Fri, 31 Jan 1997 18:19:47 +0900 (JST)
> To: squid-users@nlanr.net
> Cc: toku@ksp.nis.nec.co.jp
> Subject: How do I congiure to deny funny url accesses?
> From: toku@ksp.nis.nec.co.jp (Seiji Tokunaga)
>
> Hi! Need help on configuration.
>
>
> acl allowed_addr src xxx.xxx.xxx.0/255.255.255.0
> acl for_our_eyes_only url_regex ^http://foo\.co\.jp\.*
>
> http_access allow for_our_eyes_only allowed_addr
> http_access deny for_our_eyes_only all
>
>
> I set the above to deny hosts other than "allowed_addr"
> from accessing URL http://foo.co.jp/whatever
>
> When forbidden hosts tries to access URL "http://foo.co.jp/",
> They get denied.
> When they try "http://\foo.co.jp/" they get their pages..
> Placing a backslash "\" allowes to bypass the rules.
>
> What can I do to prevent it?
> Are there any other character that allows such things?
First to match sites use:-
acl for_our_eyes_only domain foo.co.jp foo2.co.jp
Then
http_access allow for_our_eyes_only allowed_addr
http_access deny all
\\|//
-(@ @)-
===oOO==(_)==OOo===================================================
************ NEW TELEPHONE NUMBER ************
Gareth Blades | Tel: +44 (0)1329 443564 | Segensworth Road
gblades@as.neag.co.uk | Fax: +44 (0)1329 443423 | Titchfield
IT Engineer | WWW: www.neag.co.uk | Fareham, Hants
Assessment Services | | PO15 5RH, England
===================================================================
Received on Fri Jan 31 1997 - 02:43:13 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:34:13 MST