Re: Possible DOS Attack

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On Fri, May 20, 2016 at 7:09 PM, Kurtis Rader <krader@xxxxxxxxxxxxx> wrote:
On Fri, May 20, 2016 at 4:00 PM, Roman Gelfand <rgelfand2@xxxxxxxxx> wrote:
Also, what does this mean?

::1 - - [20/May/2016:18:26:09 -0400] "OPTIONS * HTTP/1.0" 200 - "-" "Apache/2.4.6 (Red Hat Enterprise Linux) PHP/5.4.16 (internal dummy connection)"

It's checking whether your web server allows the OPTIONS command which might allow other forms of attacks to succeed. I strongly recommend disallowing that HTTP command. Easiest way is via mod_allowmethods: https://httpd.apache.org/docs/2.4/mod/mod_allowmethods.html

This is actually an internal Apache connection. See https://wiki.apache.org/httpd/InternalDummyConnection for more information.

- Y 
[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux