Note: This column represents the opinions
of the writer and as such, is not purported as fact
Sponsor's Message
|
Most ISPs run, or make use of, a caching proxy server.
If you listen to the ISP, they'll tell you that such devices are a good thing.
They make sure that the web-pages you request load more quickly and that
the cost of providing you with service is kept to a minimum.
Personally, I'm not a great fan of caching proxy servers and I've said
so before in this column.
Caching proxies work by intercepting a user's requests for a web-page and,
where possible, serving up a COPY of that page from the local cache-server rather
than downloading it again from the original site.
Check Out The Aardvark PC-Based Digital
Entertainment Centre Project
Updated 2-Dec-2002
This all sounds very sensible doesn't it?
After all, if 10,000 users are all going to request CNN's front page to
get an American perspective on the war in Iraq, why not just make a local
copy and serve it up -- saving all that international traffic (and expense)?
Well, as I've detailed before, there are some problems associated with
running a caching proxy server and the results aren't always good news
for users.
I can still recall quite vividly how, about five years ago, Xtra's proxy
server had a spaz-attack and corrupted its index. The result was that
X-rated images started appearing on the pages of otherwise innocent websites.
The operators of those websites (some of which were local) were not
at all impressed.
The thing is, if caching proxy servers are the good news that ISPs claim they are,
why not make them optional so that we can do our own comparisons and
draw our own conclusions?
The fact that most ISPs are now forcing their customers to use caching
proxies, by transparently integrating them into the path of all international
web traffic, kind of leaves you wondering if users really benefit at all doesn't
it?
So why am I re-hashing old ground today?
Well if you've been reading the headlines included every day at the foot
of this column, you can't help but notice that one small ISP has gotten
themselves in a heap of hot water by stealing bandwidth from another
by exploiting a poorly configured proxy server.
According to these reports, Net4U was able to divert a whole heap of
its customers own traffic through the proxy server run by Attica Communications.
This is the equivalent of sneaking into your neighbour's garage late one
night and running an extension lead from the power outlet they didn't know
was there then running your own lights, heaters and fridge
from it.
In most cases, these proxies are configured to only allow access from within
an ISP's own network but it seems that in the case of Attica's, someone
had been out to lunch when "security 101" was being taught so it was left
wide open.
So weren't Attica at least a little bit at fault here? Wasn't it their
responsibility to lock down their proxy?
Well, in a word, no.
If you were to absent-mindedly leave the keys in your car while it was parked
in your driveway and then come out to find someone about to start it up
and drive away, would you simply say "Ah, you got me -- yes, it's my fault,
away you go and have a good day"?
No, you'd cry "Stop thief" -- and this case is no different.
However let me add that open proxy servers are a menace and those who
unknowingly run them deserve a kick up the backside. The worst of these
poorly secured systems provide a wonderful anonymising service for any
evil little sod who might want to engage in cracking or other nasty
activities.
When it comes to caching proxy servers I say:
- Make them optional so that customers get the choice whether to use
them or not -- especially if those customers are being charged by the megabyte
(as some JetStream users are).
- Make them secure -- for everyone's sake.
Do you have an opinion on today's column or want to add something?
Have your say
Yes, You Can Donate
Although the very kind folks at iHug continue to generously sponsor the
publication of Aardvark, the bills still exceed the income by a fairly
significant amount. It is with this in mind therefore that I'm once
again soliciting donations from anyone who feels they're getting some
value from this daily column and news index. I've gone the PayPal
way of accepting donations because the time involved in processing a bunch
of little credit-card billings sometimes exceeds the monetary value they
represent. Just click on the button to donate whatever you can afford.
NOTE: PayPal bills in US dollars so don't accidentally donate twice
what you were intending :-)
Contacting Aardvark
As always, readers are invited to submit their comments on material covered
in this column. If you'd like your comments published here then please
be sure to use this form and select For Publication.
Other media organisations seeking more information or republication rights
are also invited to contact me.
Add Aardvark To Your Own Website!
Got a moment? Want a little extra fresh content for your own website or
page?
Just add a
couple of lines of JavaScript
to your pages and you can get
a free summary of Aardvark's daily commentary -- automatically updated
each and every week-day.
Aardvark also makes a summary of this daily column available via XML using
the RSS format. More details can be found
here.
Contact me if you decide to use either of these feeds and
have any problems.
Linking Policy
Want to link to this site? Check out Aardvark's
Linking Policy.
|
Did you tell someone else about Aardvark today? If not then do it
now!
|
|
| 
= open in new window