[8178] in bugtraq
Re: more Netscape 4.07 javascript security
daemon@ATHENA.MIT.EDU (Peter W)
Mon Oct 12 16:47:16 1998
Date: Sun, 11 Oct 1998 18:12:18 -0400
Reply-To: Peter W <peterw@CLARK.NET>
From: Peter W <peterw@CLARK.NET>
X-To: Max Vision <vision@kimi.net>
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: <Pine.BSF.3.96.981008144632.12371D-100000@r00tshell.com>
On Thu, 8 Oct 1998, Max Vision wrote:
> I've found that the best interim fix is to clear your cache, and then set
> both disk and memory cache sizes to zero. If you don't like this then you
> have alternatives:
UNIX users should also consider running a local caching proxy server like
Squid. Then you can set the browser's cache sizes to zero with minimal
problems. This also helps limit the amount of cache disk space needed if
you have more than one user; no longer will each person cache their own
set of Slashdot graphics. And obviously this would also help with all the
cache exploit problems that have crept up from time to time with both
Navigator and MSIE. Users already behind proxy servers (e.g. at work)
might see only a slight performance hit for going "cacheless" though the
proxy logs may show more activity from your workstation. That would be a
"job security" issue then...
-Peter
Squid can be got from http://squid.nlanr.net/Squid/
