| 1 |
On Sun, 2005-11-27 at 08:26 +0100, Francesco Talamona wrote: |
| 2 |
> On Saturday 26 November 2005 23:56, Joseph wrote: |
| 3 |
> > I just have noticed that my Apache2 access.log has few entries: |
| 4 |
> > |
| 5 |
> > 220.189.234.182 - - [27/Sep/2005:03:21:59 -0600] "CONNECT |
| 6 |
> > 202.165.103.38:80 HTTP/1.1" 200 17505 61.232.83.75 - - |
| 7 |
> > [09/Oct/2005:04:33:26 -0600] "CONNECT 66.135.208.90:80 HTTP/1.1" 200 |
| 8 |
> > 25952 59.40.34.187 - - [09/Oct/2005:19:05:40 -0600] "CONNECT |
| 9 |
> > 210.59.228.72:25 HTTP/1.1" 200 17368 66.219.100.118 - - |
| 10 |
> > [18/Oct/2005:02:04:00 -0600] "CONNECT mx2.ToughGuy.net:25 HTTP/1.0" |
| 11 |
> > 200 30192 213.180.210.35 - - [26/Nov/2005:12:09:14 -0700] "CONNECT |
| 12 |
> > 213.180.193.1:25 HTTP/1.0" 200 16916 |
| 13 |
> > |
| 14 |
> > These IP's are mostly from Russian or Chines hackers. |
| 15 |
> > My proxy is not enabled in /etc/conf.d/apache2 |
| 16 |
> > APACHE2_OPTS="-D DEFAULT_VHOST -D SSL -D PHP4" |
| 17 |
> > |
| 18 |
> > Anybody has similar entries. According to Apache explanation: |
| 19 |
> > http://httpd.apache.org/docs/1.3/misc/FAQ.html#proxyscan |
| 20 |
> > "200" would indicate that somebody is using my apache as proxy, but |
| 21 |
> > how? |
| 22 |
> > |
| 23 |
> > -- |
| 24 |
> > #Joseph |
| 25 |
> |
| 26 |
> The answer is already in the page you posted. Page sizes are different, |
| 27 |
> so you are serving as a proxy. |
| 28 |
> Set NameVirtualHost and VirtualHost directives in |
| 29 |
> /etc/apache2/vhosts.d/00_default_vhost.conf and /etc/apache2/httpd.conf |
| 30 |
> as instructed in the link above. |
| 31 |
|
| 32 |
No, my server is not a proxy. This link explain hwo to test it: |
| 33 |
http://www.karkomaonline.com/article.php/20040425124146257 |
| 34 |
|
| 35 |
The reason, the page size is different is that I'm running PHP base |
| 36 |
web-page, so every time you load it the content might change. |
| 37 |
|
| 38 |
Though, I'm not sure I follow that <Location /> directive. To prevent |
| 39 |
this type of request entirely. I have in my virtual host: |
| 40 |
|
| 41 |
NameVirtualHost 10.0.0.103:80 |
| 42 |
<VirtualHost 10.0.0.103:80> |
| 43 |
ServerName www.xxxxxx.ca |
| 44 |
|
| 45 |
<Location /> |
| 46 |
Order allow,deny |
| 47 |
Deny from all |
| 48 |
</Location> |
| 49 |
|
| 50 |
DocumentRoot /var/www/localhost/htdocs/ |
| 51 |
Setenv VLOG /var/log/apache2/log_log |
| 52 |
ErrorLog /var/log/apache2/error_log |
| 53 |
</VirtualHost> |
| 54 |
|
| 55 |
If I add the <Location /> directive as above it will not load my page at |
| 56 |
all, I get error 403 |
| 57 |
|
| 58 |
-- |
| 59 |
#Joseph |
| 60 |
-- |
| 61 |
gentoo-user@g.o mailing list |
Archives