On Tue, Mar 15, 2005 at 03:54:53PM +0100, Alberto Barbati wrote: > Hi Everybody, > > [Fedora Core 3, httpd 2.0.52] > > as many of us, I periodically see in my logs an attempt to check the > proxy capabilities of my server, namely the request "CONNECT > 1.3.3.7:1337 HTTP/1.0". > > -------------- > <VirtualHost X.X.X.X:80> > ServerName lists > ServerAlias lists.* > UseCanonicalName Off > > RewriteEngine On > RewriteRule ^/(mailman/?)?$ /mailman/listinfo [R=permanent,L] > > [rest omitted for brevity] > > </VirtualHost> > -------------- > > It seems that the CONNECT request has been processed by mod_rewrite > according to a directive that should be restricted to my named-based > virtual host. This looks very fishy to me. If this is the first VirtualHost block in your httpd.conf, it's the 'default' VirtualHost, and is the one Apache will use for requests that don't match an explicit VirtualHost block. So, if the CONNECT request was issued to your IP address and no Host: header was sent, the default VirtualHost block will get used. See 'Using Name-based Virtual Hosts' at http://httpd.apache.org/docs/vhosts/name-based.html, and the <VirtualHost> documentation at http://httpd.apache.org/docs/mod/core.html#virtualhost. --n --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|