Return-Path: 
 <user-return-13896-apmail-couchdb-user-archive=couchdb.apache.org@couchdb.apache.org>
Delivered-To: apmail-couchdb-user-archive@www.apache.org
Received: (qmail 64464 invoked from network); 24 Nov 2010 16:17:03 -0000
Received: from unknown (HELO mail.apache.org) (140.211.11.3)
  by 140.211.11.9 with SMTP; 24 Nov 2010 16:17:03 -0000
Received: (qmail 26525 invoked by uid 500); 24 Nov 2010 16:17:34 -0000
Delivered-To: apmail-couchdb-user-archive@couchdb.apache.org
Received: (qmail 26335 invoked by uid 500); 24 Nov 2010 16:17:33 -0000
Mailing-List: contact user-help@couchdb.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:user-help@couchdb.apache.org>
List-Unsubscribe: <mailto:user-unsubscribe@couchdb.apache.org>
List-Post: <mailto:user@couchdb.apache.org>
List-Id: <user.couchdb.apache.org>
Reply-To: user@couchdb.apache.org
Delivered-To: mailing list user@couchdb.apache.org
Received: (qmail 26327 invoked by uid 99); 24 Nov 2010 16:17:32 -0000
Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230)
    by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 24 Nov 2010 16:17:32 +0000
X-ASF-Spam-Status: No, hits=0.7 required=10.0
	tests=SPF_PASS,UNRESOLVED_TEMPLATE
X-Spam-Check-By: apache.org
Received-SPF: pass (nike.apache.org: local policy)
Received: from [193.50.230.240] (HELO pluton.utt.fr) (193.50.230.240)
    by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 24 Nov 2010 16:17:23 +0000
Received: from smtp1.utt.fr (smtp1.utt.fr [193.50.230.122])
	by pluton.utt.fr (8.13.1/8.13.1) with ESMTP id oAOGH20f027423
	for <user@couchdb.apache.org>; Wed, 24 Nov 2010 17:17:02 +0100
Received: from smtp1.utt.fr (smtp1.utt.fr [127.0.0.1])
	by localhost (Postfix) with SMTP id CCF79A6826F
	for <user@couchdb.apache.org>; Wed, 24 Nov 2010 17:17:02 +0100 (CET)
Received: from wifi-personnels162.utt.fr (wifi-personnels162.utt.fr
 [10.19.1.162])
	by smtp1.utt.fr (Postfix) with ESMTP id C8D59A6826B
	for <user@couchdb.apache.org>; Wed, 24 Nov 2010 17:17:02 +0100 (CET)
Content-Type: text/plain; charset=iso-8859-1
Mime-Version: 1.0 (Apple Message framework v1082)
Subject: Re: Accessing _utils scripts with reverse proxy and _rewrite?
From: =?iso-8859-1?Q?Aur=E9lien_B=E9nel?= <aurelien.benel@utt.fr>
In-Reply-To: <0BF44197-FB9E-4049-BAA0-B91EFB2D77CD@apache.org>
Date: Wed, 24 Nov 2010 17:17:02 +0100
Content-Transfer-Encoding: quoted-printable
Message-Id: <3991925E-F044-4851-9E9B-934470B81C0A@utt.fr>
References: <83C1F66D-223B-41F3-BFD8-C1253A66670C@utt.fr>
 <0BF44197-FB9E-4049-BAA0-B91EFB2D77CD@apache.org>
To: user@couchdb.apache.org
X-Mailer: Apple Mail (2.1082)
X-PerlMx-Spam: Gauge=%%XGAUGE%%%%IGAUGE%%, Probability=%%PROB%%,
 Report='%%HITS%%'
X-Virus-Checked: Checked by ClamAV on apache.org

> You can set the secure_rewrites setting to false.


Thank you, Jan.=20

What are the best practices to reduce security risks then?
To have very specific rewrite rules?


Regards,

Aur=E9lien=20=