HTTP Proxy Open Relay Detection

This script is Copyright (C) 1999-2014 Tenable Network Security, Inc.


Synopsis :

The remote web proxy server accepts requests.

Description :

The remote web proxy accepts unauthenticated HTTP requests from the
Nessus scanner. By routing requests through the affected proxy, a user
may be able to gain some degree of anonymity while browsing websites,
which will see requests as originating from the remote host itself
rather than the user's host.

Solution :

Make sure access to the proxy is limited to valid users / hosts.

Risk factor :

None

Family: Firewalls

Nessus Plugin ID: 10195 ()

Bugtraq ID:

CVE ID: