Server Security | LinuxSecurity.com

Server Security

We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.

No item found!

Discover Server Security News

Squid Vulnerability: Insecure forwarding of proxy_auth

data:image/svg+xml,%3Csvg%20xmlns=%22https://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Vendors have not issued updates yet for a vulnerability just reported by the Squid Project. "Under some conditions Squid may forward the proxy authentication credentails. This can happen if you normally require your users to log in to use the proxy, but allow some sites to be reached without needing to log in.". . .