[wellylug] Apache as a proxy for Outpuke's web-interface
Cliff Pratt
enkidu at cliffp.com
Wed May 18 09:03:05 NZST 2005
Andrej wrote:
> On Tue, 17 May 2005 19:46, Cliff Pratt wrote:
>
>>Why Apache? Why not just a Linux or FreeBSD firewall with
>>ports 25 and 443 forwarded to the Exchange server.
>
> Because e.g. a new exploit with malformed URLs
> would hit Exchange, but Apache would respond
> differently ... just hypothetically, of course. Or
> a buffer overrun exploit on those ports. Apache's
> vulnerabilities would differ from exchanges.
>
I think that that is a very low probability. It would need
to be Exchange specific, and it would need to target port
443. Yes, if you are *that* worried, you could use an Apache
proxy. I'd definitely use a mail proxy on port 25, but I
wouldn't use apache for that.
Cheers,
Cliff
More information about the wellylug
mailing list