--- "mixere@libero.it" <mixere@libero.it> wrote:
> i have squid-2.4.STABLE4-2mdk
> The problem is that all user can access to ftp site
> My configurations is
> acl pass proxy_auth REQUIRED
> acl all src 0.0.0.0/0.0.0.0
> acl manager proto cache_object
> acl localhost src 127.0.0.1/255.255.255.255
> acl SSL_ports port 443 563
> acl Safe_ports port 80 # http
> acl Safe_ports port 21 # ftp
> acl Safe_ports port 443 563 # https, snews
> acl Safe_ports port 70 # gopher
> acl Safe_ports port 210 # wais
> acl Safe_ports port 1025-65535 # unregistered ports
> acl Safe_ports port 280 # http-mgmt
> acl Safe_ports port 488 # gss-http
> acl Safe_ports port 591 # filemaker
> acl Safe_ports port 777 # multiling http
> acl CONNECT method CONNECT
> acl ftp-site proto FTP
>
> http_access allow manager localhost
> http_access deny manager
> http_access deny !Safe_ports
> http_access deny CONNECT !SSL_ports
> http_access allow localhost
> http_access allow pass
> http_access deny ftp-site
> http_access deny all
>
> I tried also
> acl ftp-site dstdomain ^ftp://
> http_access deny ftp-site
> but all pc in the network, also without
> authentification, con access to
> ftp site.
> someone have an idea?
> Thanks
>
> Alex
Try
acl FTP proto FTP
http_access deny FTP
/Naeem
__________________________________________________
Do You Yahoo!?
LAUNCH - Your Yahoo! Music Experience
http://launch.yahoo.com
Received on Sat May 11 2002 - 01:23:49 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:08:04 MST