On Wed, Dec 31, 2003 at 03:05:43PM +0100, Richard Atterer wrote:
> On Wed, Dec 31, 2003 at 11:33:02AM +0200, Haim Ashkenazi wrote:
> > I have a client that have an exchange server inside the LAN and he wants to
> > access the web interface from the world. I thought I'll put a transparent
> > proxy server on the DMZ. apt-cache search proxy gave a few options but
> > except squid (which is a little overkill for this) I don't know any of them
> > (especially in terms of security) and I'm looking for recommendations.
>
> Um, do I understand correctly that you want to allow access from the
> internet to a machine in your client's LAN? In that case, squid is indeed
> the wrong solution.
I think they may be talking about MS Exchange Server.
The program I like to think of as "The Internet's
Answer to the Petrie Dish*"
I do not think I would use the words "Exchange Server"
and "Security" in the same breath.
On the serious side, you probably could allow a port
redirect to that machine if there are no other web
services to be accessed.
In general though, this is a pretty bad idea, and with
MS Inside, even worse.
* for the non biologically inclined, that's what you
use for culturing bacteria...
--
------------------------------------------------------
Dale Amon [EMAIL PROTECTED] +44-7802-188325
International linux systems consultancy
Hardware & software system design, security
and networking, systems programming and Admin
"Have Laptop, Will Travel"
------------------------------------------------------
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
