httpd-docs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject DO NOT REPLY [Bug 50388] New: DNS stealing example might be wrong
Date Tue, 30 Nov 2010 21:33:19 GMT

           Summary: DNS stealing example might be wrong
           Product: Apache httpd-2
           Version: 2.3-HEAD
          Platform: All
        OS/Version: All
            Status: NEW
          Severity: normal
          Priority: P2
         Component: Documentation


Here you describe an
example how traffic to a vhost could be stolen by another one (on the same

In the example it's with control over the domainname, which is the
_second_ vhost definition.
As far as I understood the vhost matching process and as my examples showed,
the first vhost is always used if multiple would match (in both cases IP and
name based).

So that the stealing really works (for the vhosts woul need to be
<VirtualHost www.def.dom>
ServerAdmin webguy@def.dom
DocumentRoot /www/def

ServerAdmin webgirl@abc.dom
DocumentRoot /www/abc

Or don't I see something?

Configure bugmail:
------- You are receiving this mail because: -------
You are the assignee for the bug.

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message