|
which version of apache are you
using? The proxy config typically looks like this:
=============
<IfModule
mod_proxy.c>
ProxyRequests On
AllowCONNECT 443 563
<Proxy
*>
...
#Your allow deny directives should go
here.
</Proxy>
</IfModule>
============
I am not sure whether <Directory
proxy:*> is the way to go.
Cheers,
Emmanuel
----- Original Message -----
Sent: Tuesday, February 07, 2006 6:24
AM
Subject: [users@httpd] Open Proxy
Can anyone help me secure my Apache proxy server. Here is the
problem.
The box that I have on the net is NOT behind a firewall. It has
one NIC with a external IP.
<Directory proxy:*>
Order
deny,allow
Deny from all
Allow from 127.0.0.1
</Directory>
That
is the mod_proxy configuration I have in place, I THOUGHT this might prevent
people on the net from pointing their browsers to my proxy and surfing freely,
but it has not. The ultimate goal I have is to just have it so that when I'm
ssh'd into my box that only I can use the proxy and not have it wide open.
I dont' know if I can close this up or not?
| 