RE: [users@httpd] Security glitch with Rewrite and Proxy

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Red box? I don't see a red box on this page? Wait... I'll take of my
see-the-world-in-pink-glasses...
Oh, that red box! >_< Gah, I'm sorry. I've updated my apache but haven't
read the new documentation.

Soooo, since our system is quite dependant on apaches caching, any good
ideas on how to work around that effect?
Does it necessarilly mean I have to ommit the [P] if I want to do what I
want to do?

/Carsten

>-----Original Message-----
>From: jslive@xxxxxxxxx [mailto:jslive@xxxxxxxxx] On Behalf Of 
>Joshua Slive
>Sent: Thursday, September 28, 2006 5:13 PM
>To: users@xxxxxxxxxxxxxxxx
>Subject: Re: [users@httpd] Security glitch with Rewrite and Proxy
>
>
>On 9/28/06, Germer, Carsten <carsten.germer@xxxxxxx> wrote:
>> Hi :)
>> >Perhaps you have modified your logformat to log origclientaddr?
>> Yes, I have. Our modified LogFormat puts ORIGCLIENTADDR 
>where originally
>> the IP-adress is.
>>
>> >Are you running mod_cache?
>> # mod_cache directives
>> CacheDefaultExpire 3600
>> CacheEnable disk /
>> CacheIgnoreHeaders Set-Cookie
>> CacheIgnoreNoLastMod On
>> CacheLastModifiedFactor 0.1
>> CacheMaxExpire 86400
>> # End of mod_cache directives.
>>
>> # mod_disk_cache directives
>> CacheRoot "/scratch/apache_proxy_cache/mod_proxy"
>> Yup ;)
>
>There ya go.  Read the nice big red box at the top of
>http://httpd.apache.org/docs/2.2/mod/mod_cache.html
>
>Mod_cache is fast because it skips most of the regular request
>processing when serving files, including mod_rewrite.  You should
>think of using mod_cache as being like putting an HTTP/1.1 caching
>proxy in front of the server that has no knowledge of the server's
>configuration other than what it reads from the response headers.
>
>Joshua.
>
>---------------------------------------------------------------------
>The official User-To-User support forum of the Apache HTTP 
>Server Project.
>See <URL:http://httpd.apache.org/userslist.html> for more info.
>To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
>   "   from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
>For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
>
>

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
   "   from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux