My customer wants to protect his Outlook Web Access server from malicious
attacks by introducing a Squid reverse proxy server between the Internet and
the OWA server. The attacks automatically try OWA username/password
combinations that lockout the accounts after three tries but then he has to
manually reset about 100 accounts.
The idea is to use squid (2.4 and 2.5) auth_on_acceleration. Unfortunately
it doesn't work, the browser not being able to handle both the squid and the
OWA authorization schemes, I suppose. At any rate the squid
username/password popup doesn't appear for the OWA origin server although it
does for others.
Interestingly, squid configured as a proxy-cache and with a browser (MSIE6)
set up for it, both authentication schemes work - Squid and the OWA.
Is there a way around this to accomplish what he wants to do?
-- Jim Flowers<jflowers@ezo.net>Received on Wed Jul 30 2003 - 04:23:56 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:18:20 MST