nanog mailing list archives

Re: Open relays and open proxies

From: John Payne <john () sackheads org>
Date: Thu, 24 Apr 2003 16:56:24 -0400

--On Thursday, April 24, 2003 8:45 PM +0000 Paul Vixie <vixie () vix com>wrote:

> I use proxycheck to manually check hosts for open proxies
> (http://www.corpit.ru/mjt/proxycheck.html)... you could script this (or
> a similar tool) and run scans of your entire network.

That's what I would suggest.  You could also reactively test your
customers  when they make a connection to your webserver or mailserver.


that won't catch the case where a proxy is open and is being abused but
the resulting traffic is directed outside of the local isp, which is going
to be the common case since parasites don't like to endanger their hosts.

True, but most people who end up with an open proxy trojan will also beusing the machine to read their ISP provided email, etc

Current thread:

Open relays and open proxies Adi Linden (Apr 24)
- Re: Open relays and open proxies Will Yardley (Apr 24)
  - Re: Open relays and open proxies John Payne (Apr 24)
    - Re: Open relays and open proxies Paul Vixie (Apr 24)
    - Re: Open relays and open proxies John Payne (Apr 24)
- Re: Open relays and open proxies Richard Cox (Apr 24)
  - Re: Open relays and open proxies Neil J. McRae (Apr 25)
    - Re: Open relays and open proxies Roland Verlander (Apr 25)
    - Re: Open relays and open proxies Paul Wouters (Apr 25)
    - Re: Open relays and open proxies Jack Bates (Apr 25)
    - Re: Open relays and open proxies Paul Vixie (Apr 25)
    - Re: Open relays and open proxies Jack Bates (Apr 25)
    - RE: Open relays and open proxies Christopher J. Wolff (Apr 25)
    - Re: Open relays and open proxies Jack Bates (Apr 25)
    - Re: Open relays and open proxies Daniel Senie (Apr 25)

(Thread continues...)