Re: apache being hit
Hi there,
Guess you were right, proxies were enabled. I commented out the lines:
<IfModule mod_proxy.c>
ProxyRequests On
from 'httpd.conf'. But I am still getting a lot of entries in
access.log (I restarted apache)
Should the hits stop immediately after I disabled that? Should I
uncomment any of these lines?:
#<Directory proxy:*>
# Order deny,allow
# Deny from all
# Allow from .your_domain.com
#</Directory>
What do you mean by "tighten my security" how do I do that? Can you
point me to any references?
If you answer, please send a copy to me, since I am not currently on
the list.
Thanks a lot for your quick response,
Roberto
On Mon, 8 Nov 2004 22:50:46 -0600, Jacob S <stormspotter@6texans.net> wrote:
> On Tue, 9 Nov 2004 02:24:37 -0200
>
>
> Roberto Winter <rhwinter@gmail.com> wrote:
>
> > Hi there!
> >
> > This started a few days ago with no apparent reason, my access.log has
> > more than a hit per seconf, coming from all sorts of bizarre pages
> > that have nothing to do with me... Why is that? Where can I get more
> > help? What is going on? I'm desperate here....
> >
> > If you answer, please send a copy to me, since I am not currently on
> > the list.
>
> Do you have the apache module mod_proxy installed, by chance?
>
> I've seen hits on web servers where people were probing for open proxies
> before, but with that many hits it looks like they're successfully using
> you as a proxy. This is how some of those 'anonymizer' programs work -
> by using computers on the internet that they have found to be open
> proxies.
>
> Needless to say, if you have mod_proxy enabled, either disable it or
> tighten your security. Then be sure to restart apache to make the
> changes take affect.
>
> HTH,
> Jacob
>
Reply to: