Bugtraq mailing list archives
RE: UPDATE: [wcolburn () nmt edu: SMTP relay through checkpoint fire wall]
From: "Proescholdt, timo" <Timo.Proescholdt () brk-muenchen de>
Date: Thu, 21 Feb 2002 00:55:49 +0100
It's not just Checkpoint Firewall that has a problem with HTTP
CONNECT.>
From what I can tell default installations of the CacheFlow web proxy software, some Squid installations, some Apache installations with proxying enabled, and some other web proxy installations I haven't identified allow anyone to use the HTTP CONNECT method. This is being
Finjan-SurfinGate/4.0 ( NT ) is "vulnerable" , Trend Micro Interscan Viruswall ( 3.51 ) ( NT ) as well. Both do not seem to have a configuration switch to change this behaviour. Squid 2.3 STABLE 1 seems not to be affected by this issue, as there is no CONNECT Method allowed in default configuration. greetings timo
Current thread:
- RE: UPDATE: [wcolburn () nmt edu: SMTP relay through checkpoint fire wall] Proescholdt, timo (Feb 21)
- RE: UPDATE: [wcolburn () nmt edu: SMTP relay through checkpoint fire wall] Peter Bieringer (Feb 22)
- RE: UPDATE: [wcolburn () nmt edu: SMTP relay through checkpoint fire wall] Corey J. Steele (Feb 23)