Re: Fw: VIRUS IN YOUR MAIL (W32/BugBear.A (Clam))

To: Russell Coker <russell@coker.com.au>
Cc: debian-isp@lists.debian.org, Tim Wilson <tim@sws.net.au>, Adam McMahon <adam@sws.net.au>
Subject: Re: Fw: VIRUS IN YOUR MAIL (W32/BugBear.A (Clam))
From: Brian May <bam@snoopy.apana.org.au>
Date: Thu, 17 Oct 2002 18:51:42 +1000
Message-id: <[🔎] 20021017085142.GA4745@snoopy.apana.org.au>
Mail-followup-to: Brian May <bam@snoopy.apana.org.au>, Russell Coker <russell@coker.com.au>, debian-isp@lists.debian.org, Tim Wilson <tim@sws.net.au>, Adam McMahon <adam@sws.net.au>
In-reply-to: <[🔎] 200210171044.06292.russell@coker.com.au>
References: <001201c27586$cf54bde0$722ba8c0@PBS> <200210171025.52469.russell@coker.com.au> <20021017083246.GA4470@snoopy.apana.org.au> <[🔎] 200210171044.06292.russell@coker.com.au>

On Thu, Oct 17, 2002 at 10:44:06AM +0200, Russell Coker wrote:
> Is Linux transperant proxying up to this?  Can you intercept a data stream 
> while preserving both the source and destination addresses?

I don't think it is possible, but I do not know why...

AFAIK transparent proxying in Linux is limited to redirecting all ports
to a given port another host. It is not possible for the proxy server to
tell, for instance what the original destination IP address was.

A transparent HTTP proxy relies on the server name HTTP1.1 request
field to determine what host the client really wanted to connect to.
(this has been tested with Pacific's transparent proxy).
-- 
Brian May <bam@snoopy.apana.org.au>

Reply to:

Follow-Ups:
- Re: Fw: VIRUS IN YOUR MAIL (W32/BugBear.A (Clam))
  - From: Jeff S Wheeler <jsw@five-elements.com>

References:
- Re: Fw: VIRUS IN YOUR MAIL (W32/BugBear.A (Clam))
  - From: Russell Coker <russell@coker.com.au>

Prev by Date: Re: Fw: VIRUS IN YOUR MAIL (W32/BugBear.A (Clam))
Next by Date: Re: Fw: VIRUS IN YOUR MAIL (W32/BugBear.A (Clam))
Previous by thread: Re: Fw: VIRUS IN YOUR MAIL (W32/BugBear.A (Clam))
Next by thread: Re: Fw: VIRUS IN YOUR MAIL (W32/BugBear.A (Clam))
Index(es):
- Date
- Thread