Security Basics mailing list archives

Securing a webserver through reverse proxy?

From: Security <security () zerouptime ch>
Date: Wed, 19 Feb 2003 17:33:05 +0100

Greetings,

I've read about a way to secure webservers, which must not be directly
exposed to the Internet, using a reverse proxy, e.g. MS ISA Server or
Squid on a UNIX box.

Now my question would be: Has anyone experience with that? Is it really
more secure (compared to firewalling and port forwarding)? Is the MS ISA
Server Webpublishing rule (which implies reverse caching) doing an
application layer filtering or does it just the mentioned caching? Can a
Squid reverse proxy solution fulfill that too?

If not, what are the steps necessary to accomplish this?

Your input is appreciated.

-- 
Jonas Nagel <fireball () zerouptime ch>

Current thread:

Securing a webserver through reverse proxy? Security (Feb 19)
- Re: Securing a webserver through reverse proxy? Adam McCarthy (Feb 20)
- Re: Securing a webserver through reverse proxy? Alejandro Flores (Feb 20)
  - Re: Securing a webserver through reverse proxy? brian_carpio (Feb 20)
  - Re: Securing a webserver through reverse proxy? theog (Feb 20)
    - Re: Securing a web server through reverse proxy? Scott Liebergen (Feb 22)
- <Possible follow-ups>
- RE: Securing a webserver through reverse proxy? Alisson Leite de Morais Veras (Feb 22)