---

SecurityPortal: Ask Buffy – Blocking Internet Access, Apache Proxy Request

Questions this week cover SSL FTP in Internet Explorer; Blocking
Internet Access; Apache Proxy Request; Hardening NT/2000 & HP
Unix; Firewalls and ICS; MS Proxy:

  • “I am an ISP administrator and have several dial-up and 24 hour
    online wireless LAN clients.

    I would like to block certain users (dialup & LAN) from
    accessing the Internet but they should be able to send and receive
    their mail only.

    How do I setup my server to do this? I am using Linux Redhat 6.2
    kernel 2.2.x

  • I noticed in my Apache log that some bad guys were directing
    requests thru my server – to save themselves bandwidth I guess. For
    example, they would send a “GET
    http://www.somesite.com/blah/blah.hmtl” request.

    The “404” in there says I am denying the request but they keep
    at it. Maybe because I was loosely configured I got on a some kind
    of list. Of course, it takes bandwidth to deny these requests. I
    tried denying based on incomming IP (with ipchains) but the users
    seem to be generic webserfers who could be anywhere so that isn’t
    practical.”

Complete
Story

Get the Free Newsletter!

Subscribe to Developer Insider for top news, trends, & analysis