www-modproxy-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Dan Lincoln <dlinc...@storesonline.com>
Subject Proxy Forwarding to Port 25 Security Hack?
Date Mon, 28 Jul 2003 18:03:07 GMT
I've got a LOT of the follow entries in my Apache 2.0.45 access logs...

66.216.126.181 - - [28/Jul/2003:17:37:54 -0600] "POST
http://208.187.218.206:25/ HTTP/1.1" 200 877 "-" "-"
66.216.126.181 - - [28/Jul/2003:17:37:55 -0600] "POST
http://208.187.218.208:25/ HTTP/1.1" 200 877 "-" "-"
66.216.126.181 - - [28/Jul/2003:17:37:56 -0600] "POST
http://208.187.218.205:25/ HTTP/1.1" 200 877 "-" "-"
66.216.126.181 - - [28/Jul/2003:17:37:57 -0600] "POST
http://208.187.218.134:25/ HTTP/1.1" 200 6877 "-" "-"
66.216.126.181 - - [28/Jul/2003:17:37:57 -0600] "POST
http://208.187.218.200:25/ HTTP/1.1" 200 877 "-" "-"
203.98.164.136 - - [28/Jul/2003:17:37:58 -0600] "POST
http://208.187.218.207:25/ HTTP/1.1" 502 343 "-" "-"
203.98.164.136 - - [28/Jul/2003:17:37:59 -0600] "POST
http://208.187.218.210:25/ HTTP/1.1" 502 343 "-" "-"

I have mod_proxy.c compilied in but there are no configuration directives..
I've added 
<Proxy *>
        Order Deny,Allow
        Deny from all
</Proxy>

and that blocks access.

Should a default installation of Apache 2 allow forwarding?

Mime
View raw message