One Reply to “ok.txt”

  1. REF:

    Hi Tom,

    It’s pretty simple – consider your browser going via a Web proxy server (usually is the case for most large isps). Your browser makes the request:
    GET HTTP/1.1

    directly to the proxy.  It then connects to and asks for default.htm which it then returns to you whilst keeping a copy for itself.
    Then when the next guy asks for the same url it can serve it from its local cache.

    Now when access controls are in place, it generally only works for known IP ranges (for that ISP), other connecting IPs get denied.

    What slashdot is doing is connecting to (at least Ports 80 and 3128) and making a request for
    a) It gets "ok" back
    b) It is a 200 OK instead of a 403 DENIED
    c) The Headers show slashdot’s server details
    then it is safe to say that the machine is an open relay, and I guess /. would take the appropriate action (or precautions).

    Hope this helps,


Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.