1 |
On Saturday 26 November 2005 23:56, Joseph wrote: |
2 |
> I just have noticed that my Apache2 access.log has few entries: |
3 |
> |
4 |
> 220.189.234.182 - - [27/Sep/2005:03:21:59 -0600] "CONNECT |
5 |
> 202.165.103.38:80 HTTP/1.1" 200 17505 61.232.83.75 - - |
6 |
> [09/Oct/2005:04:33:26 -0600] "CONNECT 66.135.208.90:80 HTTP/1.1" 200 |
7 |
> 25952 59.40.34.187 - - [09/Oct/2005:19:05:40 -0600] "CONNECT |
8 |
> 210.59.228.72:25 HTTP/1.1" 200 17368 66.219.100.118 - - |
9 |
> [18/Oct/2005:02:04:00 -0600] "CONNECT mx2.ToughGuy.net:25 HTTP/1.0" |
10 |
> 200 30192 213.180.210.35 - - [26/Nov/2005:12:09:14 -0700] "CONNECT |
11 |
> 213.180.193.1:25 HTTP/1.0" 200 16916 |
12 |
> |
13 |
> These IP's are mostly from Russian or Chines hackers. |
14 |
> My proxy is not enabled in /etc/conf.d/apache2 |
15 |
> APACHE2_OPTS="-D DEFAULT_VHOST -D SSL -D PHP4" |
16 |
> |
17 |
> Anybody has similar entries. According to Apache explanation: |
18 |
> http://httpd.apache.org/docs/1.3/misc/FAQ.html#proxyscan |
19 |
> "200" would indicate that somebody is using my apache as proxy, but |
20 |
> how? |
21 |
> |
22 |
> -- |
23 |
> #Joseph |
24 |
|
25 |
The answer is already in the page you posted. Page sizes are different, |
26 |
so you are serving as a proxy. |
27 |
Set NameVirtualHost and VirtualHost directives in |
28 |
/etc/apache2/vhosts.d/00_default_vhost.conf and /etc/apache2/httpd.conf |
29 |
as instructed in the link above. |
30 |
|
31 |
Ciao |
32 |
Francesco |
33 |
-- |
34 |
Linux Version 2.6.12-gentoo-r9, Compiled #2 Wed Aug 24 18:43:16 CEST |
35 |
2005 |
36 |
One 2.2GHz AMD Athlon 64 Processor, 2GB RAM, 4308.99 Bogomips Total |
37 |
aemaeth |
38 |
-- |
39 |
gentoo-user@g.o mailing list |