Hello List,
I've just stumbled onto the weirdest issue:
server1 and server2 running CentOS 7 with latest updates.
server1 running OpenVAS for internal scans.
server2 running Apache with the following in the config:
SetEnvIf Remote_Addr "^10\.10\.10\.5$" dontlog #OpenVAS
CustomLog logs/access_log combined env=!dontlog
When I SSH into OpenVAS and run wget
http://server2 nothing is reported (working as expected).
However, when the OpenVAS scans kick off, it starts logging:
10.10.10.5 - - [11/Aug/2016:12:07:11 +0000] "GET / HTTP/1.0" 400 226 "-" "-"
I've tried a few things to fix this issue, but so far nothing is working. This is very confusing. Any suggestions?
