LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware
User Name
Password
Slackware This Forum is for the discussion of Slackware Linux.

Notices

Reply
 
Search this Thread
Old 11-07-2005, 06:12 PM   #1
Seiken
Member
 
Registered: Sep 2004
Location: Canada
Distribution: Slackware 14
Posts: 248

Rep: Reputation: 30
http proxy server


Hello,

I want to run an http proxy server on my slackware box. I am running Slackware 10.2. Could someone point me in the direction of a guide on how to set this up? (Or just explain it here if you'd like.) I have looked in the HOWTO and Guide sections of The Linux Documentation Project, and did a search of the Slackware forum on LinuxQuestions, but haven't found anything.

Thanks,
Seiken
 
Old 11-07-2005, 06:29 PM   #2
Gort32
Member
 
Registered: Sep 2004
Distribution: Slack!
Posts: 150

Rep: Reputation: 15
Squid is your friend. The process for setting up squid is rather easy as pretty much all of the basic work is already done for you. If you just start Squid it will start working. From there you can search for specific configuration examples that meet your needs.
 
Old 11-07-2005, 06:38 PM   #3
Seiken
Member
 
Registered: Sep 2004
Location: Canada
Distribution: Slackware 14
Posts: 248

Original Poster
Rep: Reputation: 30
Thanks!
 
Old 11-07-2005, 07:42 PM   #4
Seiken
Member
 
Registered: Sep 2004
Location: Canada
Distribution: Slackware 14
Posts: 248

Original Poster
Rep: Reputation: 30
Well it's installed... now I just have to figure out how to make it allow connections.
 
Old 11-07-2005, 07:56 PM   #5
Seiken
Member
 
Registered: Sep 2004
Location: Canada
Distribution: Slackware 14
Posts: 248

Original Poster
Rep: Reputation: 30
it keeps telling me that the proxy isn't accepting connections... I've created a couple acl's and allowed http_access to them in the squid.conf though :\ confused.
 
Old 12-07-2005, 01:31 PM   #6
mago
Member
 
Registered: Apr 2004
Location: Costa Rica
Distribution: slack current with 2.6.16.18 (still off the hook)
Posts: 284

Rep: Reputation: 33
Check that the allow is above the default deny all, it reads them from top to bottom, therefore the top one will over rule the botom one.
 
Old 12-09-2005, 12:03 PM   #7
Crashbox
Member
 
Registered: Jun 2004
Location: USA
Distribution: Slackware
Posts: 136

Rep: Reputation: 21
Or....

I suggest checking this out SSH Proxy. He wrote it for Windows, but it would be even easier to implement in linux.

I'm actually getting the hardware together for a project just like this for my home network. The box will be my print server internally and my ssh proxy server externally. I've given it a lot of thought, and I have a few ideas about security:

You probably would want to create a completely separate user for the ssh proxy. If you have no other reason to ssh into your box, then you may want to config ssh to only allow connections from the "proxy" user (I believe you can do this in the ssh_config file) and while you're in the the config file, you probably want to disable root logins via ssh. Restricting ssh down to one (or two) users will make it harder for script kiddies with brute force ssh scanners to burn you. But be sure to use good strong passwords for the users (upper/lowercase, numbers, symbols, etc). It probably isn't a bad idea to use an unusual name for the "proxy" user too.

I'm assuming this Slack box is your primary box, so you're going to want to take a long hard look at what services you are running. For instance, if you live alone and are gone to work 8 (or more) hours a day, do you really need CUPS running while you are gone. Same for X. This box will be on the net, so limit your exposure. Take a look at what packages you have installed too. All software has holes. Remove the stuff you don't need/use.

Since my box isn't my primary box, I'm taking the further step of using a specialized server distro (Tiny Sofa Classic) - with everything I don't need disabled and/or removed. Most distros like this have taken extra measures (kernel patches, custom builds, etc.) to help keep things secure. Security is a relative concept, but I figure a step like this can't hurt.

My plan is to get this thing going this weekend. Assuming I do, I'll be back to this thread to revise this...or ask for help...depending on how difficult it ends up being.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Only allow HTTP access through proxy? gjhicks Linux - Security 7 05-12-2005 04:52 AM
uunable to connect http other then port 80 using proxy server askjha Linux - Networking 1 06-03-2004 01:38 PM
"socks5" -> "http" proxy protocol, or ssh tunnel to sock5 ? I'm beyond http p vmicho Linux - Networking 2 12-16-2003 05:32 AM
BitchX through a HTTP Proxy? eggs Linux - Software 1 07-11-2003 06:43 PM
ntpdate through http proxy thas Linux - Networking 0 05-14-2003 01:50 PM


All times are GMT -5. The time now is 03:47 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration