> On Tue, Dec 02, 2003 at 05:36:01PM +0200, Neil Thompson wrote: >> On Tue, Dec 02, 2003 at 07:14:06AM -0330, Mike Pelley wrote: >> > Folks - A review of my firewall logs followed by a rejection due to a >> > RBL listing makes it seem like my Apache 2.0.40 reverse proxy in my >> DMZ >> > is being used by spammers. Here is the relevent sections of my >> httpd.conf: >> >> Funny, I was just having the same problem myself. What I did was... >> >> > <VirtualHost X.Y.1.1> >> > ServerName www.pelleys.com >> > ServerAlias pelleys.com >> > ProxyRequests Off >> > <Proxy *> <------ OUT >> >> <Proxy http://some-internal-server/> <------ IN >> >> > Order deny,allow >> > Allow from all >> > </Proxy> >> > ProxyPass / http://some-internal-server/ >> > ProxyPassReverse / http://some-internal-server/ >> > CustomLog /path/to/www-proxy.log combined >> > ErrorLog /path/to/www-error.log >> > </VirtualHost> > > OK...replying to self. > > You also need a > > <Proxy *> > Order deny,allow > Deny from all > </Proxy> > > somewhere in your config so that the bad guys can't get in. > > > Cheers! (Relax...have a homebrew) > > Neil > Neil - Are you sure about that last part? I don't this proxy as a forward proxy and adding that last section denies all access (fixes the problem, but that's a little severe ;-) Cheers, Mike -- redhat-list mailing list unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe https://www.redhat.com/mailman/listinfo/redhat-list
