Squid Reverse Proxy security gotchas

Yesterday, there was a thread on hacker news highlighting that many sites around the world were making available potentially sensitive information about their site via Apache’s server-status link (provided by mod-status). The stated advice is to limit access to this and similar pages (such as the server info page provided by mod-info) by using Allow/Deny […]

Marcus Povey

Yesterday, there was a thread on hacker news highlighting that many sites around the world were making available potentially sensitive information about their site via Apache’s server-status link (provided by mod-status). The stated advice is to limit access to this and similar pages (such as the server info page provided by mod-info) by using Allow/Deny […]

What technical countermeasures are there for the UK’s email snooping agenda?

I asked this question over on Hacker News, as well as Quora, but I thought I’d also ask it here… The UK plans to intercept all electronic communication. They currently don’t plan to snoop on content, but as noted elsewhere connection data is just as invasive. To me this is both a civil liberties and […]

Marcus Povey

I asked this question over on Hacker News, as well as Quora, but I thought I’d also ask it here… The UK plans to intercept all electronic communication. They currently don’t plan to snoop on content, but as noted elsewhere connection data is just as invasive. To me this is both a civil liberties and […]

Reporting online terrorists

There was a small ripple around the internet this morning caused by the Home office opening up the Beta terrorist reporting tool. To what extent the reports from this tool are monitored is unclear, but I suspect this will cause more problems that it solves. Even before we consider the rather broad definition the government […]

Marcus Povey

There was a small ripple around the internet this morning caused by the Home office opening up the Beta terrorist reporting tool. To what extent the reports from this tool are monitored is unclear, but I suspect this will cause more problems that it solves. Even before we consider the rather broad definition the government […]