I had a spam attack this morning. I cleaned up the account responsible, but now I am stuck with over 80 thousand messages in my citadel SMTP queue. This queue is so large that I can't use WebCit to clear the queue, because it just crashes trying to load all the messages to get them all selected and deleted. Surely there must be some command line way to clear this queue that doesn't require 6 different JavaScript libraries? The instructions given in the citadel documentation only mention WebCit, and I can't get that to work at all due to the size of the queue.
My objective is to allow clients over the internet to connect to a squid proxy server, provide a username and password, and then access several http servers on the internal network that the server is part of, by using IP addresses like 192.168.11.152. Currently, access to these servers is handled via a mess of NAT port forwards from internal port 80 at some IP, to a nonstandard external port. This requires people to remember that the device with IP 192.168.11.152 is accessed via http://example.com:8936, and is not ideal. Also, many of the devices do not support usernames and passwords, so I am depending on security through obscurity. I do not want to use a VPN, because the only traffic I want to allow into the network from outside is HTTP and HTTPS traffic. I cannot modify the HTTP servers on any of my devices, as they are all embedded systems (power switches, security cameras, signalling devices, etc). I have searched for guides on setting up squid proxy servers on debian, but they are all about setting up anonymous proxies, do not support usernames and passwords, and allow proxy connections to external resources. Once connected to the proxy, the only traffic that it should forward is traffic to 192.168.11.xxx addresses. So, my questions:
- Is this even possible? Based on my Google searches, nobody is doing this, and maybe that's because it can't be done?
- Is this a good idea? If not, are there any better ones that are more secure and still meet my requirements?
- Where do I start? All of the online guides just give cut and paste config files, without explaining anything, so I can't really modify them to my purposes. The man pages are obscure enough that I would already need to know what I want before finding information about it. Is there a good book/set of tutorials somewhere I missed?
I realize that a complete answer to this question would take more time than anyone who isn't me can spend on this. I'll accept an answer that briefly discusses the above 3 points and comes with detailed references.