![Igor Allen Ritzmann Igor Allen Ritzmann](//static.vivaolinux.com.br/imagens/fotos/desconhecido.png)
igor.ritzmann
(usa Debian)
Enviado em 26/02/2013 - 11:44h
fica melhor liberar da seguinte forma:
- o que for diferente das portas seguras você dá negação ex:
acl SSL_ports port 443 # https
acl SSL_ports port 563 # snews
acl SSL_ports port 873 # rsync
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 631 # cups
acl Safe_ports port 873 # rsync
acl Safe_ports port 901 # SWAT
http_access deny !Safe_ports