Re: CONNECT in apache logs
On Mon, 7 Feb 2005 22:30:33 +1030, David Purton <dcpurton@chariot.net.au> wrote:
> Hi folks,
>
> Just looking for some peace of mind on getting lines like this in my
> apache logs:
>
> 61-31-129-10.dynamic.tfn.net.tw - - [06/Feb/2005:10:50:08 +1030] "CONNECT ms81.hinet.net:25 HTTP/1.0" 200 1370 "-" "-"
>
> I have the following line in /etc/apache/http.conf (ie commented out):
>
> # LoadModule proxy_module /usr/lib/apache/1.3/libproxy.so
>
> They give a 200 OK result, but as far as I can tell from my tests, my
> home page is delivered as a result of these requests, rather then
> anything dodgy.
>
> Anything I should know about?
>
> Can I configure anything so that these CONNECT requests give an error
> rather than 200?
>
I was playing around with Apache2 and found that I can put
<Limit CONNECT>
Deny From All
</Limit>
in my default <Directory>... config and it gives me a 403 on CONNECT
attempts.. That might lead you in the right direction.
--
Darryl
smartssa@gmail.com
http://smartssa.com / http://darrylclarke.com
Reply to: