RE: [squid-users] cache manager access from web from J. Webster on 2010-02-13 (squid-users)

From: J. Webster <webster_jack_at_hotmail.com>
Date: Sun, 14 Feb 2010 01:32:52 +0000

Would that work with:
http_access deny manager CONNECT !SSL_ports

----------------------------------------
> Date: Sat, 13 Feb 2010 20:58:11 +0100
> From: uhlar_at_fantomas.sk
> To: squid-users_at_squid-cache.org
> Subject: Re: [squid-users] cache manager access from web
>
> On 11.02.10 10:46, J. Webster wrote:
>> I have changed the config and can now login to the cache manager.
>> This was in the conf already:
>> http_access deny CONNECT !SSL_ports
>>
>> So, the issue remains whether allowing password access to the cache manager is enough.
>> How else can this be made more secure? I guess not if the only way for me to access it is through a public IP address.
>
> I think allowing managr only on https_port should work and help...
>
> --
> Matus UHLAR - fantomas, uhlar@fantomas.sk ; http://www.fantomas.sk/
> Warning: I wish NOT to receive e-mail advertising to this address.
> Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
> The 3 biggets disasters: Hiroshima 45, Tschernobyl 86, Windows 95

_________________________________________________________________
Tell us your greatest, weirdest and funniest Hotmail stories
http://clk.atdmt.com/UKM/go/195013117/direct/01/
Received on Sun Feb 14 2010 - 01:33:07 MST

This archive was generated by hypermail 2.2.0 : Tue Feb 16 2010 - 12:00:05 MST