httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Pouchain Flore <httpapa...@yahoo.fr>
Subject [users@httpd] Prevent remote access
Date Tue, 28 Oct 2003 14:28:01 GMT
Hi everybody,

I put my apache server behind a reverse-proxy and I
manage the anthentication through the reverse-proxy.
So I want to prevent direct connection to Apache.
I used a Location directive:
<Location />
    Order deny,allow
    Allow from @local_ip
    Deny from all
</Location>

The problem is that I use Virtual Host. So if somebody
use a Location directive in the VH configuration:

<Location />
     Allow from all
</Location>

the VH can now be reached directly !

Does anybody know if there a server directive to
prevent this for the whole server.

Note:
I can't install any firewall on this server...


Thanks for help






___________________________________________________________
Do You Yahoo!? -- Une adresse @yahoo.fr gratuite et en fran├žais !
Yahoo! Mail : http://fr.mail.yahoo.com

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message