• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 537
  • Last Modified:

What is a good http/ftp proxy server?

What do you recommend?   I need a good, easy to setup http/https/ftp proxy server for a linux box running ubuntu 8.04 (hardy) using kernel 2.6.24-21-386.  All my pcs are ethernet connected in a p2p configuration using ip 10.10.0.xxx.   Because.......

I have another win xp pro, sp3 box that's infected with malware.  I want to setup up a proxy on the linux machine so I can run Spyware Doctor's "smart update" to get the most recent software and  definitions. I can't do that on the xp box because I do not have internet connectivity.  Spyware doctor Smart Update has a small panel that allows me to enter proxy server: ip, port, uid and passward, I assume this is to another machine to get internet access.

Zone Alarm is blocking hasplms.exe and msfeedssync.exe.  I'm searching for those programs now and will  remove or delete when and if locate them.

Any thoughts on a good, quick, simple, easy to implement proxy for linux?

ZL identified these Trojans as the culprits:

Win32.Adware.Dm.kb
Win32.Application.Binder.B
Win32.Generic.Malware.p2p
Win32.Trojan.Crypt.ASPM.Gen
Win32.Trojan.PSW.LdPinch.BSG

Thanks much!
0
IT79637
Asked:
IT79637
  • 2
  • 2
  • 2
  • +1
6 Solutions
 
TintinCommented:
So all you want the proxy server for is to let the XP box download updates?

You don't really need a proxy server for that.  You can use iptables, xinetd or a lightweight proxy utility such as balance.

0
 
djashleyCommented:
0
 
Hugh FraserConsultantCommented:
if you're comfortable with the Linux environment, a second NIC, good firewall configuration, and a proxy like Squid will provide the functions you're looking for. If you choose this path, grab a copy of Webmin to help administer the system.

If you're not comfortable configuring the individual pieces needed to make your Ubuntu system perform as a secure gateway, consider one of the canned Linux security systems like Untangle. It's Linux and the same tools under the covers, but with an easier to understand GUI. The caveat is that it installs from the CD, so you'll either need another computer or sacrifice your Ubuntu system until the Windows system is cleaned up.

0
What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

 
TintinCommented:
squid is a massive overkill if all the proxy is doing is allowing the XP box to occasionally download some updates.
0
 
Hugh FraserConsultantCommented:
If the system were clean, I'd agree. My assumption was that this was a one-time effort to correct a box that's already infected with several trojans, and there's probably some reasonable concern about the trojans phoning home and perhaps causing further grief before they can be cleaned. I assume this explains why the box does not have internet connectivity (a wise precaution, in my estimation), although it probably did at one time to get infected.

Squid and iptables firewalls are good tools for doing this safely, but they are a bit daunting. Hence the suggestion to throw Untangle on a spare box as a proxy server, lock the access down, and do the updates.

Of course, the best solution these days is to simply re-deploy the machine.
0
 
djashleyCommented:
If you want a gateway then IPCOP is the best. If you need good QOS then pfsense
0
 
IT79637Author Commented:
I was not able to evaluate all of the suggested proxy servers. I also had troubles setting them up.  Consequently, I decided to use the sledge hammer approach and restore the last full backup before the introduction of the malware.

I'm tempted to take an old box and set it up using a linux distribution designed for security only.  

Thanks for all your input.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 2
  • 2
  • 2
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now