You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@httpd.apache.org by Joshua Santelli <sa...@yahoo.com> on 2003/04/01 03:21:28 UTC

Re: [users@httpd] GET requests for other hosts

thanks - It doesn't look innocent but I think the
permissions and config will keep them at bay.

Thought on the proxy requests?

1.2.3.4 - - [03/Mar/2003:15:06:14 -0500] "HEAD
http://auth.redclouds.com/members4/ HTTP/1.0" 404 -
"-" "Mozilla/3.0 (compatible)"

1.2.3.4 - - [03/Mar/2003:20:39:13 -0500] "HEAD
http://members.milfhunter.com/ HTTP/1.0" 200 - "-"
"Mozilla/3.0 (compatible)"

1.2.3.4 - - [03/Mar/2003:21:20:26 -0500] "HEAD
http://www.karupspc.com/members/members.shtml
HTTP/1.0" 404 - "-"

5.6.7.8 - - [28/Mar/2003:20:09:07 -0500] "GET
http://www.yahoo.com/ HTTP/1.1" 200 956 "-"
"Mozilla/4.0 (compatible; MSIE 4.01; Windows 95)"

5.6.7.8 - - [28/Mar/2003:20:09:39 -0500] "GET
http://www.s3.com/ HTTP/1.1" 200 956 "-" "Mozilla/4.0
(compatible; MSIE 4.01; Windows 95)"

--- Joshua Slive <jo...@slive.ca> wrote:
> 
> On Mon, 31 Mar 2003, Joshua Santelli wrote:
> 
> >
> > I'm seeing GET and HEAD requests in my access
> logs.
> > Are these getting passed onto the other sites?  Is
> > apache functioning as a proxy for these users.
> >
> > They are ofter around a lot of there OPTIONS and
> > PROPFIND requests. What are they.
> >
> > FYI:  I'm running 2.0.44 on win2k.
> >
> > TIA, sorry if this is a basic question.
> 
> It's not a basic question, but the first part is a
> FAQ:
> http://httpd.apache.org/docs/misc/FAQ.html#proxyscan
> 
> The OPTIONS/PROPFIND are webdav requests from
> clients trying to gain write
> access to your server.  Could be innocent, or could
> be people trying to
> break in, but you don't need to worry about it on a
> properly configured
> Apache.
> 
> Joshua.


__________________________________________________
Do you Yahoo!?
Yahoo! Platinum - Watch CBS' NCAA March Madness, live on your desktop!
http://platinum.yahoo.com

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] GET requests for other hosts

Posted by Joshua Slive <jo...@slive.ca>.

On Mon, 31 Mar 2003, Joshua Santelli wrote:

> thanks - It doesn't look innocent but I think the
> permissions and config will keep them at bay.
>
> Thought on the proxy requests?

Did you read the FAQ entry?

> > It's not a basic question, but the first part is a
> > FAQ:
> > http://httpd.apache.org/docs/misc/FAQ.html#proxyscan

Since the "/" requests all return the same file size, I'm sure you don't
have a problem.

Joshua.


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org