Quote:
Originally posted by emthree
Thanks flexor, reading now 
|
No problem, enjoy the GPL finest.
Just be sure not to spawn another "free" proxy/socks a.k.a configure yours correctly. I
strongly suggest listening for connection requests only from your (internal) LAN card, build a decent firewall on that machine, secure your proxy with user/pass ACL style.
If you
really feel the need to onorate requests from WAN/internet card, add filtering by IP address (MAC too for paranoid-mode-admin). Drop unknown packets like there is no tomorrow and don't look back. If u want to implement some kind of logging for this specific service (to check what script kiddo is scanning you), use iptables LOG facility combined with limit module not to overgrow your log files.
I'm sure you are already aware of those, just a little reminder
HIH