Mike Batchelor wrote:
> Naturally! :) Now the only question is whether the default conf file shipped
> with squid has it on or off. I vote for off. Make people think twice before
> tunnelling mail traffic though HTTP...
WebDAV is a protocol to author documents on a HTTP server. Mail on a
HTTP mail server is only one application of it. Some people will like to
see support for it off, some on.
You already tunnel mail traffic through HTTP from sites like HotMail and
other HTTP mail servers. Only thing different is the client being used,
and some aspects of the protocol which is now more suitable to be
machine read than human.
With this attitude maybe you should set up an access control to only
allow plain GET/HEAD without any query parameters, and only allow
PUT/POST, query parameters and other dynamic features to sites which you
regard as "safe". There are a lot of applications who use HTTP as
transport layer for non-web content.
-- Henrik Nordstrom Spare time Squid hackerReceived on Mon Jun 07 1999 - 23:30:46 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:46:47 MST