I am happy to “Certify” Squid-Cache version 3.5.19 as
\n“Works For Me” on
\nCentOS(6+7), SLES(12SP1), Oracle Linux(6+7), RHEL(7), OpenSUSE(42.1 Leap), Debian(8.4), Ubuntu(14.04+16.04)<\/p>\n
HTTP is commonly used as an API for many purposes in any industry and in many cases if you analyze an API specs and output you can see that some thinking was invested in it.<\/p>\n
Around the Internet we can find many ideas about\u00a0API’s and while some are well published others are long forgotten and are considered “old”. It is true that when you look at some of the API’s they might look “cryptic” or “malformed” but these have a purpose. Most of these APIs was meant to be public and as users we have access to all of them. But also many API’s requires some level of authentication or authorization which was clearly meant to not<\/strong><\/em> be fully public.<\/p>\n Some hackers around the world see the opportunity to “hack” something \u00a0when possible.\u00a0From my own API’s\u00a0which includes:\u00a0HTTP,\u00a0SMTP, DNS, WIFI HotSpot, Moblie and many others it is clear that some might think that it’s funny to send some malformed packets towards a Router or an AP. But I\u00a0feel that there is a need to clear couple things\u00a0out for\u00a0any hacker.<\/p>\n Behind any System on the Internet there is\u00a0some person which deserves respect. The fact that\u00a0the API is there means that you are not allowed to hack it by it’s owner unless it was designed for it. White? Black? Green? Red? is there any meaning to all of these? Not too far from the invention of HTTP the DNS system was invented and it’s an API like HTTP and many others. It\u00a0is commonly used over UDP and has a very limited size and format but it has power in the same level as a button on a car dashboard. Technically it can and is being used in many places as a trigger to some system. Indeed UDP is not reliable at the same level of TCP but when the network equipment is trusted then there would be no reason to not use UDP.<\/p>\n A list of things that can be done using a DNS service messaging:<\/p>\n And many other uses which can give an example to what an API can\u00a0look like. I had the pleasure to read couple\u00a0books about APIs\u00a0published by Nordic APIs<\/a>\u00a0which gave me\u00a0a\u00a0fresh perspective on how others see an API and what might happen on the wild Internet that requires attention.<\/p>\n One key point which I learned from them is mentioned in\u00a0the video “Good APIs aren\u00b4t built in a day”<\/a><\/em><\/strong><\/p>\n
\nWhen comparing the real world to the\u00a0Internet API’s\u00a0not anyone can enter any door or any place. Not anyone can\u00a0enter a closed party or a\u00a0secured area. It would be a bit different since the minimum requirements to enter one place would not be the same for another.
\nFor example, in the hackers world it’s known that there are ways to prove your value and earn your “nick” or “name”. Some hacking cultures are restrictive in their approach and respect any API avoiding\u00a0the flame of war. While others think it’s better to hack some API as a Proof Of Concept or a Proof Of Knowledge.<\/p>\n
\nMy answer is that all of these are hats, I do not have one and I do not want one. I am a simple person who has\u00a0couple very simple API’s under his hands. But I learned\u00a0that to\u00a0give a good example\u00a0is a profession. Specifically it’s not simple\u00a0to give an example for\u00a0a\u00a0hacking kid. If any hacking kid wants to hack something, like in the real world, there are playgrounds for this sole purpose and an example would be\u00a0canyouhack.it<\/a>. Also these days if you want to learn how things work in the micro level we have Lots of free and open Virtualization platforms. These exist in any part of the Industry from the\u00a0electricity level to the application.
\nAll these tools was meant for the sole purpose of allowing the learning curve to be\u00a0easy simple and safe, to use a real world\u00a0power tool in an environment which will tolerate things which might not be acceptable in the real world API’s.<\/p>\n\n