[squid-users] Do I need to be technical to use squid proxy?

[Antony Stone]

On Wednesday 15 August 2018 at 21:09:57, Oldman wrote:

> Thanks
> 
> I won't change any thing unless I am sure here.

Well, you've certainly changed quite a lot of the standard config in the file 
you showed us earlier.

> What was dangerous ?  Did you mean I could be hacked with that
> configuration file?

I seriously doubt you can be "hacked" (whatever you specifically mean by that) 
but only because you are running the Squid proxy on a domestic network and it 
is therefore almost certainly unreachable from the Internet.

However, defining "safe ports" to be "any port at all" means your proxy can be 
used for quite a number of protocols other than HTTP/S (for example, SMTP) and 
since this is almost certainly not what you want this proxy to be (ab)used 
for, you should stick the the default definition of safe ports which is 
designed to prevent this sort of abuse.

Just out of interest, what made you make the changes you did to the standard 
config?


Antony.

-- 
"The future is already here.   It's just not evenly distributed yet."

 - William Gibson

                                                   Please reply to the list;
                                                         please *don't* CC me.