On Tue, Feb 08, 2005 at 10:01:25AM +1030, David Purton wrote:
> On Mon, Feb 07, 2005 at 04:09:18PM -0500, Darryl Clarke wrote:
> > On Mon, 7 Feb 2005 22:30:33 +1030, David Purton <dcpurton@chariot.net.au> wrote:
> > > Hi folks,
> > >
> > > Just looking for some peace of mind on getting lines like this in my
> > > apache logs:
> > >
> > > 61-31-129-10.dynamic.tfn.net.tw - - [06/Feb/2005:10:50:08 +1030] "CONNECT ms81.hinet.net:25 HTTP/1.0" 200 1370 "-" "-"
> > >
> > > I have the following line in /etc/apache/http.conf (ie commented out):
> > >
> > > # LoadModule proxy_module /usr/lib/apache/1.3/libproxy.so
> > >
> > > They give a 200 OK result, but as far as I can tell from my tests, my
> > > home page is delivered as a result of these requests, rather then
> > > anything dodgy.
> > >
> > > Anything I should know about?
> > >
> > > Can I configure anything so that these CONNECT requests give an error
> > > rather than 200?
> > >
> >
> > I was playing around with Apache2 and found that I can put
> >
> > <Limit CONNECT>
> > Deny From All
> > </Limit>
> >
> > in my default <Directory>... config and it gives me a 403 on CONNECT
> > attempts.. That might lead you in the right direction.
>
> Looks good - this seems to do what I want.
>
> I through in an "Order deny, allow" just for good measure as well.
>
in a vain attempt to not contribute to this sort of error - that would
be "threw"... *sigh*
dc
--
David Purton
dcpurton@chariot.net.au
For the eyes of the LORD range throughout the earth to
strengthen those whose hearts are fully committed to him.
2 Chronicles 16:9a
Attachment:
signature.asc
Description: Digital signature