On Tue, Jul 13, 2010 at 1:13 PM, Joseph M. Morgan <josephmmorgan@xxxxxxxxxxx> wrote: > This is an Apache 2.2 server running within a VM on CentOS. > > Both the authn_basic_module and the authn_host_module are loaded. > > I have the following directive: > > <Directory "/var/www/html"> > Order deny,allow > Deny from 221.192.0.0/14 > </Directory> > > Yet, today I see in my access logs: > > 221.192.199.35 - - [12/Jul/2010:15:26:19 -500] -500] "GET > http://www.wantsfly.com/prx2.pho?hash=abbreviated HTTP/1.0" 404 ...... > > Why didn't Apache block this? > > > Are there other Deny/Allow blocks in your config that may be overriding this one? Does this request end up not being resolved to a on disk file, which would bypass the Directory block? Cheers Tom --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|