|

Squid Web Proxy Cache

»

using squid as a sql insersion filter

View: New views

3 Messages — Rating Filter: Alert me

	using squid as a sql insersion filter by Michael da Silva Pereira-3 :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message Hi All, I'm sure this is not the first time this question has been asked, but google has failed me :( I am currently thinking of implementing a squid server to reverse proxy some sites for clients hosted on a few IIS servers. The problem with them is that the clients are getting different developers to put together there sites, so they coded very badly. Allowing SQL insersions to overwrite data in there databases and etc... I was hoping I could use squid and setup a few url rejects on the standard, INSERT, DELETE, and UPDATE junk. But doing this for a POST is proving to me more difficult, the url or auth external scripts aren't passed the POST data/content. Which I would also want to filter for obvious reasons. Anybody done this before ? Am I on the right track ? Regards, Mike
	Re: using squid as a sql insersion filter by Henrik Nordstrom-5 :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message mån 2009-10-26 klockan 14:10 +0200 skrev Michael da Silva Pereire: > I was hoping I could use squid and setup a few url rejects on the > standard, INSERT, DELETE, and UPDATE junk. > > But doing this for a POST is proving to me more difficult, the url or > auth external scripts aren't passed the POST data/content. > Which I would also want to filter for obvious reasons. To get access to the POST data via Squid you need to use ICAP and write an ICAP server module doing the filtering. There is a couple of free ICAP servers you can use available at sourceforge which may be suitable for your filter development: http://c-icap.sourceforge.net/ http://icap-server.sourceforge.net/ http://greasyspoon.sourceforge.net/ http://sourceforge.net/projects/adaptit/ Regards Henrik
	Re: using squid as a sql insersion filter by Luis Daniel Lucio Quiroz-2 :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message Le lundi 26 octobre 2009 06:10:46, Michael da Silva Pereire a écrit : > Hi All, > > I'm sure this is not the first time this question has been asked, but > google has failed me :( > > I am currently thinking of implementing a squid server to reverse proxy > some sites for clients hosted on a few IIS servers. > The problem with them is that the clients are getting different > developers to put together there sites, so they coded very badly. > Allowing SQL insersions to overwrite data in there databases and etc... > > I was hoping I could use squid and setup a few url rejects on the > standard, INSERT, DELETE, and UPDATE junk. > > But doing this for a POST is proving to me more difficult, the url or > auth external scripts aren't passed the POST data/content. > Which I would also want to filter for obvious reasons. > > Anybody done this before ? Am I on the right track ? > > Regards, > Mike > You may use squid+https_port+icap to do your job how ever, we did that using apache, apache is a little more friendly to manipulate querryes than squid.