httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Boyle Owen" <Owen.Bo...@swx.com>
Subject RE: [users@httpd] Not allowing Connect method
Date Wed, 08 Sep 2004 12:27:59 GMT
> -----Original Message-----
> From: Chad Kellerman [mailto:ckellerman@alabanza.com]
> 
> .... Actually, finding out how to configure the Apache server to Not Allow 
> (405) CONNECT methods is all I have to do...  But I haven't 
> been able to 
> find that anywhere.  

The CONNECT method is handled by mod_proxy - have you verified the AllowConnect setting?

see http://httpd.apache.org/docs/mod/mod_proxy.html#allowconnect

Rgds,
Owen Boyle
Disclaimer: Any disclaimer attached to this message may be ignored. 




google didn't turn up anything.  Been 
> through the 
> Apache Docs and didn't find anything there either.
> > 
> > - make sure the configs are the same (don't just read them 
> - physically
> > copy one over the other - via a floppy disk, if necessary..)
> > - make sure the network environments are the same (compare 
> netstat and
> > ifconfig outputs)
> Just as an FYI...  Been through all the firewall rules also..  ;^).
> 
> 
> Thanks,
> Chad
> > 
> > Rgds,
> > Owen Boyle
> > Disclaimer: Any disclaimer attached to this message may be ignored. 
> > 
> > 
> >>
> >>if I am on host1:
> >>
> >>and I issue the following command.
> >>
> >>[root@host1 httpd]# telnet 0 80
> >>Trying 0.0.0.0...
> >>Connected to 0.
> >>Escape character is '^]'.
> >>CONNECT domain.com:25 HTTP/1.0
> >>
> >>
> >>it returns a 405 Method not allowed.
> >>
> >>HTTP/1.1 405 Method Not Allowed
> >>Date: Wed, 08 Sep 2004 11:00:44 GMT
> >>Server: Apache/1.3.29 (Unix) ApacheJServ/1.1.2 PHP/4.3.4 
> >>mod_throttle/2.11 FrontPage/5.0.2.2634 Rewrit/1.1a
> >>Allow: GET, HEAD, OPTIONS, TRACE
> >>Connection: close
> >>Content-Type: text/html; charset=iso-8859-1
> >>
> >>
> >>but if I issued the same command on host2 it returns a 200 
> >>the default 
> >>Apache page.
> >>
> >>I cannot figure out why one would return a 405 and one would 
> >>return a 400?
> >>
> >>It doesn't make sense what so ever.
> >>
> >>So my questions is....
> >>
> >>how can I configure Apache so that it does not allow ( 
> >>returns a 405 ) 
> >>the CONNECT (and TRACE) methods?
> >>
> >>I have :
> >>
> >><Location />
> >>   <Limit CONNECT>
> >>     Order deny,allow
> >>     Deny from all
> >>   </Limit>
> >></Location>
> >>
> >>But that returns a 403 and is not what I want.
> >>
> >>
> >>Thanks for any pointers....
> >>
> >>
> >>Chad
> >>
> >>
> >>
> >>
> >>
> >>
> >>------------------------------------------------------------
> ---------
> >>The official User-To-User support forum of the Apache HTTP 
> >>Server Project.
> >>See <URL:http://httpd.apache.org/userslist.html> for more info.
> >>To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> >>   "   from the digest: users-digest-unsubscribe@httpd.apache.org
> >>For additional commands, e-mail: users-help@httpd.apache.org
> >>
> >>
> > 
> > Diese E-mail ist eine private und persönliche Kommunikation. Sie hat
> > keinen Bezug zur Börsen- bzw. Geschäftstätigkeit der SWX 
> Gruppe. This
> > e-mail is of a private and personal nature. It is not related to the
> > exchange or business activities of the SWX Group. Le 
> présent e-mail est
> > un message privé et personnel, sans rapport avec l'activité 
> boursière du
> > Groupe SWX.
> > 
> > This message is for the named person's use only. It may contain
> > confidential, proprietary or legally privileged information. No
> > confidentiality or privilege is waived or lost by any 
> mistransmission.
> > If you receive this message in error, please notify the 
> sender urgently
> > and then immediately delete the message and any copies of 
> it from your
> > system. Please also immediately destroy any hardcopies of 
> the message.
> > You must not, directly or indirectly, use, disclose, 
> distribute, print,
> > or copy any part of this message if you are not the 
> intended recipient.
> > The sender's company reserves the right to monitor all e-mail
> > communications through their networks. Any views expressed in this
> > message are those of the individual sender, except where the message
> > states otherwise and the sender is authorised to state them 
> to be the
> > views of the sender's company. 
> > 
> > 
> > 
> > 
> ---------------------------------------------------------------------
> > The official User-To-User support forum of the Apache HTTP 
> Server Project.
> > See <URL:http://httpd.apache.org/userslist.html> for more info.
> > To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> >    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> > For additional commands, e-mail: users-help@httpd.apache.org
> > 
> > 
> > 
> 
> 
> 
> 
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP 
> Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
> 
> 

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message