On Mon, Feb 07, 2005 at 04:09:18PM -0500, Darryl Clarke wrote:
> On Mon, 7 Feb 2005 22:30:33 +1030, David Purton <dcpurton@chariot.net.au> wrote:
> > Hi folks,
> >
> > Just looking for some peace of mind on getting lines like this in my
> > apache logs:
> >
> > 61-31-129-10.dynamic.tfn.net.tw - - [06/Feb/2005:10:50:08 +1030] "CONNECT ms81.hinet.net:25 HTTP/1.0" 200 1370 "-" "-"
> >
> > I have the following line in /etc/apache/http.conf (ie commented out):
> >
> > # LoadModule proxy_module /usr/lib/apache/1.3/libproxy.so
> >
> > They give a 200 OK result, but as far as I can tell from my tests, my
> > home page is delivered as a result of these requests, rather then
> > anything dodgy.
> >
> > Anything I should know about?
> >
> > Can I configure anything so that these CONNECT requests give an error
> > rather than 200?
> >
>
> I was playing around with Apache2 and found that I can put
>
> <Limit CONNECT>
> Deny From All
> </Limit>
>
> in my default <Directory>... config and it gives me a 403 on CONNECT
> attempts.. That might lead you in the right direction.
Looks good - this seems to do what I want.
I through in an "Order deny, allow" just for good measure as well.
thanks for your help.
cheers
dc
--
David Purton
dcpurton@chariot.net.au
For the eyes of the LORD range throughout the earth to
strengthen those whose hearts are fully committed to him.
2 Chronicles 16:9a
Attachment:
signature.asc
Description: Digital signature