You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@tomcat.apache.org by Christoph Kukulies <ku...@www.kukulies.org> on 2006/06/16 10:45:31 UTC

mod_proxy a risk?

I wonder whether mod_proxy can be a security risk in Apache2.0.54,
when being enabled in conjunction with tomcat (5.5).

A machine which is open to the world (on port 80 only) is blacklisted
at cbl.abuseat.org and I wonder how come.

--
Chris Christoph P. U. Kukulies kuku_at_kukulies.org

---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org

Re: mod_proxy a risk?

Posted by Tim Funk <fu...@joedog.org>.

No. It looks like a config problem.

-Tim

Christoph Kukulies wrote:

> I wonder whether mod_proxy can be a security risk in Apache2.0.54,
> when being enabled in conjunction with tomcat (5.5).
> 
> A machine which is open to the world (on port 80 only) is blacklisted
> at cbl.abuseat.org and I wonder how come.
>  

---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org

Re: mod_proxy a risk?

Posted by Filip Hanik - Dev Lists <de...@hanik.com>.

you should turn off your proxyrequests

ProxyRequests Off

first line in the documentation
http://httpd.apache.org/docs/2.0/mod/mod_proxy.html

you can still use ProxyPass without using proxyrequests

Christoph Kukulies wrote:
> I wonder whether mod_proxy can be a security risk in Apache2.0.54,
> when being enabled in conjunction with tomcat (5.5).
>
> A machine which is open to the world (on port 80 only) is blacklisted
> at cbl.abuseat.org and I wonder how come.
>
> --
> Chris Christoph P. U. Kukulies kuku_at_kukulies.org
>
> ---------------------------------------------------------------------
> To start a new topic, e-mail: users@tomcat.apache.org
> To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
> For additional commands, e-mail: users-help@tomcat.apache.org
>
>
>   


-- 


Filip Hanik

---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org