Full Article: New Simple Attack on Squid Proxies Leverages Malicious Flash Ads
Squison is the name of a recently discovered security bug in the Squid proxy server, a popular Linux utility deployed by many Internet providers as a transparent and/or caching proxy.
At its roots, Squid is a proxy server that takes traffic from incoming ports and relays it to its destination by masking its IP address. In most cases, Squid is used in transparent mode and does not alter the origin IP address, merely relaying traffic.
The reason behind deploying Squid in such a manner is to gather more insights on Web traffic, but also for caching purposes. Small and large ISPs use this technique to speed up page loads by providing an already-cached Web page to their subscribers, but also for saving bandwidth.
For these reasons, unknown to many end users, at one point or another, much of their Web traffic passes through a Squid server.
Squison attack works only for HTTP traffic.
[...]
Squison is the name of a recently discovered security bug in the Squid proxy server, a popular Linux utility deployed by many Internet providers as a transparent and/or caching proxy.
At its roots, Squid is a proxy server that takes traffic from incoming ports and relays it to its destination by masking its IP address. In most cases, Squid is used in transparent mode and does not alter the origin IP address, merely relaying traffic.
The reason behind deploying Squid in such a manner is to gather more insights on Web traffic, but also for caching purposes. Small and large ISPs use this technique to speed up page loads by providing an already-cached Web page to their subscribers, but also for saving bandwidth.
For these reasons, unknown to many end users, at one point or another, much of their Web traffic passes through a Squid server.
Squison attack works only for HTTP traffic.
[...]
