Comment 4 for bug 457377

Replying to [comment:5]:

                I'm not sure what purpose the /001 serves, but the purpose of a randomized or a custom /NNN suffix per user or per proxy is to prevent scanning attacks: attacker scans for hosts that serve a known, fixed "signature" URL. Again, /001 seems counter productive in this sense.

                One issue with random is users remembering the URL to browse to. We do have that issue now with /001 so it's partially addressed with the welcome email containing the full "https://<proxy IP>/001/" URL. Another suggestion was to allow users to specify their own, custom suffix if that's easier to remember.

                > Also...remind me why we have this suffix? Is it to make the page most likely to be actively scanned (document root, at the node's IP address) easier to camouflage? (In other words, attempts to "disguise" that page don't have to incorporate a login dialog into their fake design? Were/are there other reasons?