www-apache-bugdb mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Jonathan Marshall <jam...@research.bell-labs.com>
Subject general/5252: Directory proxy:* deny doesn't work
Date Thu, 04 Nov 1999 17:19:51 GMT

>Number:         5252
>Category:       general
>Synopsis:       Directory proxy:* deny doesn't work
>Confidential:   no
>Severity:       serious
>Priority:       medium
>Responsible:    apache
>State:          open
>Class:          sw-bug
>Submitter-Id:   apache
>Arrival-Date:   Thu Nov  4 09:20:01 PST 1999
>Originator:     jamars@research.bell-labs.com
>Release:        1.3.6
Linux 2.2.10, RedHat 6.0
gcc version egcs-2.91.66 19990314/Linux (egcs-1.1.2 release).
mod_proxy, with a custom patch
I want to deny proxy requests coming from a specific IP address.
I have the following in my config:

  <Directory proxy:*>
  order allow,deny
  deny from

where is a test IP address that I want to deny.

Yet all requests from that IP address succeed.  It leaves that
IP address in the logs too.

When I use "deny from all", it still lets the requests through!

I've looked through the bug reports and found a couple of mentions
of similar problems, but no solutions that worked for me.  I've
tried variations, such as Files, DirectoryMatch, Location, and
LocationMatch, all to no avail.
mod_proxy, with "deny from all" inside a <Directory: proxy:*>
[In order for any reply to be added to the PR database, you need]
[to include <apbugs@Apache.Org> in the Cc line and make sure the]
[subject line starts with the report component and number, with ]
[or without any 'Re:' prefixes (such as "general/1098:" or      ]
["Re: general/1098:").  If the subject doesn't match this       ]
[pattern, your message will be misfiled and ignored.  The       ]
["apbugs" address is not added to the Cc line of messages from  ]
[the database automatically because of the potential for mail   ]
[loops.  If you do not include this Cc, your reply may be ig-   ]
[nored unless you are responding to an explicit request from a  ]
[developer.  Reply only with text; DO NOT SEND ATTACHMENTS!     ]

View raw message