Security Incidents mailing list archives

Re: AOL "proxy" behavior?

From: "Kurt Seifried" <bugtraq () seifried org>
Date: Mon, 19 Aug 2002 22:48:53 -0600

Uhhh yeah, a single HTTP session can go through multiple sessions quite
easily. Microsoft CARP (Cache Array Routing Protocol) can easily cause this:

http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnproxy/htm
l/carp.asp

This is quite common from larger ISPs, like AOL, with a few tens of millions
of clients and god only knows how many web proxies.

Kurt Seifried, kurt () seifried org
A15B BEE5 B391 B9AD B0EF
AEB0 AD63 0B4E AD56 E574
http://seifried.org/security/





----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com

Current thread:

AOL "proxy" behavior? Michael B. Morell (Aug 19)
- Re: AOL "proxy" behavior? Mike Arnold (Aug 20)
- Re: AOL "proxy" behavior? Jeff Jirsa (Aug 20)
- Re: AOL "proxy" behavior? Kurt Seifried (Aug 20)