Plugin ID | 34 |
Plugin name | Squid proxy port tcp/3128 detection |
Plugin filename | Squid proxy port 3128 detection.plugin |
Plugin filesize | 2826 bytes |
Plugin family | Firewalls |
Plugin created name | Marc Ruef |
Plugin created email | marc dot ruef at computec dot ch |
Plugin created web | http://www.computec.ch |
Plugin created company | computec.ch |
Plugin created date | 2003/11/14 |
Plugin updated name | Marc Ruef |
Plugin updated email | marc dot ruef at computec dot ch |
Plugin updated web | http://www.computec.ch |
Plugin updated company | computec.ch |
Plugin updated date | 2004/11/17 |
Plugin version | 1.5 |
Plugin changelog | Optimized the GET request and trigger in version 1.3. Corrected the plugin structure and added the accuracy values in 1.4. Changed the comment in 1.5 |
Plugin protocol | tcp |
Plugin port | 3128 |
Plugin procedure detection | open|send GET http://www.computec.ch HTTP/1.0\nProxy-Connection: Keep-Alive\n\n|sleep|close|pattern_exists *HTTP/1.[0-1] 200 * OR *HTTP/1.[0-1] 50[2-3] * |
Plugin detection accuracy | 80 |
Plugin comment | See also ATK plugin 196 for a more generous version of this plugin. |
Bug affected | Squid proxy server listening on default port tcp/3128 |
Bug not affected | Proxy servers bind to another port |
Bug vulnerability class | Configuration |
Bug description | Port tcp/3128 is the default port for Squid proxy servers. If an attacker can connect to the port, start an HTTP request and get an HTTP reply, he can be very sure that there is a web proxy available. |
Bug solution | Reconfigure the remote Squid proxy so that it only accepts requests coming from inside your network. |
Bug fixing time | 20 minutes |
Bug exploit availability | Yes |
Bug remote | Yes |
Bug local | Yes |
Bug severity | Medium |
Bug popularity | 10 |
Bug simplicity | 8 |
Bug impact | 7 |
Bug risk | 7 |
Bug Nessus risk | Low/Medium |
Bug check tools | Nessus is able to do the same check. |
Source Nessus ID | 10195 |
Source Literature | Hacking Exposed: Network Security Secrets & Solutions, Stuart McClure, Joel Scambray and George Kurtz, February 25, 2003, 4th Edition, McGraw-Hill Osborne Media, ISBN 0072227427 |
Source Misc. | http://www.computec.ch |