Re: Decurity concern: cachemgr & GET method ?

From: Henrik Nordstrom <>
Date: Tue, 12 Jan 1999 00:42:14 +0100

Alex Rousskov wrote:

> Sure. AFAIK, there is no technical problem with that. Some developers are
> against moving Squid closer to an origin server and adding HTML to the
> manager output, that's all.

In this case I am in this category. The authentication security issues
with cachemgr.cgi is easy to solve, and there are benefits in keeping
the Squid interface at a machine parsable level (which rarely is
suitable for human eyes). Lets not forget automated monitoring and
statistics collection.

In my opinion the current cachemgr.cgi is merely a reference
implementation on how to get the information from Squid. A lot of work
is required (and probably more information from Squid as well) to turn
this into something that is really useful.

Henrik Nordstrom
Spare time Squid hacker
Received on Mon Jan 11 1999 - 16:26:51 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:43:58 MST