Re: [squid-users] Squid3 reverse proxy & Failed to select source strange errors

From: David B. <haazeloud_at_gmail.com>
Date: Mon, 23 Nov 2009 16:32:29 +0100

Hi mike,

Mike Marchywka a écrit :
> [snip]
>> Normal website attacks.
>>
>> One of the benefits of using Squid is to prevent these resource wasters
>> getting near the backend processors. "Failed to select source" is good
>> news.
>>
>> You might also want to occasionally scan the access.log to see if any
>> foreign requests do get through (2xx or 3xx status). If any do you have
>> a problem, otherwise everything is fine.
>>
>
> I think we had our's up for maybe 1 day before it was discovered.
> We just added our own headers for authentication. Not sure this
> is always an option but if you can restrict by IP or UA or something
> that may be the easiest thing to do.
>
Sure, this could be great, but this will not help us I think.
We're using squid as a reverse proxy, so anyone can tell squid : "please
give me this static content or this image". I can't see how can i
restrict this. :)

Regards
David.
Received on Mon Nov 23 2009 - 15:32:41 MST

This archive was generated by hypermail 2.2.0 : Mon Nov 23 2009 - 12:00:04 MST