RE: Found problem?

Subject: RE: Found problem?
From: Hassler, Jeff (Jeff.Hassler@asc.asrc.com)
Date: Mon Nov 17 2003 - 07:43:23 AKST

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Next message: Tim Johnson: "Re: KDE App Launcher (binary)"
• Previous message: Andy Hall: "Crossover Office"
• Maybe in reply to: Justin Dieters: "Found problem?"
• Next in thread: Mike Tibor: "RE: Found problem?"
• Maybe reply: Hassler, Jeff: "RE: Found problem?"
• Reply: Hassler, Jeff: "RE: Found problem?"

I have been attempting to follow this discourse since I realize I need
to secure my Linux machines.

So, where do I start reading? I have seen a recommendation for
O'Reilly's Linux Security Cookbook. I believe I need to start with the
very basics.

Thanks in advance.

-----Original Message-----
From: shortpier [mailto:shortpier@shortpier.is-a-geek.com]=20
Sent: Friday, November 14, 2003 8:30 PM
To: Andy Firman
Cc: AKlug
Subject: Re: Found problem?

Apache has a "redirect" option Also Iptables has a redirect option. I
have used both in the past to enable DMZ type services IE pass a
external port into a novell Groupwise server Webmail server, Novell auth
services for TCP/IP etc (other uses I have doone are Games, Speakfreely,
dialpad etc. For web based stuff I have found apache's redirect to be
the best IE they request a url and it autoredirects to SSL etc.

Shortpier=20
On Sun, 2003-11-16 at 13:37, Andy Firman wrote:
> On Sun, Nov 16, 2003 at 12:43:45AM -0900, Justin Dieters wrote:
> >=20
> > Yeah. I stopped the proxy stuff - I was expecting Apache to simply
start=20
> > drop the requests, or throw them into the error log, but instead it=20
> > keeps responding to them with 404 messagse, which threw me off at=20
>=20
> I had ProxyRequests "on" as well. I thought it was necessary for=20
> for my ProxyPass and ProxyPassReverse rules. My apache forwards=20
> requests for http://www.firman.us to the Zope Zserver which is=20
> running on port 8080. After doing some reading I found that:
>=20
> "ProxyRequests directive: This allows or prevents Apache=20
> from functioning as a forward proxy server. Setting ProxyRequests to
'off'
> does not disable use of the ProxyPass directive. Warning: Do not=20
> enable proxying until you have secured your server. Open proxy servers
are
> dangerous both to your network and to the Internet at large."
>=20
> http://httpd.apache.org/docs/mod/mod_proxy.html#proxyrequests
>=20
> So I turned off the ProxyPass and all is well.
> Glad this discussion came up.
>=20
> Andy
>=20
>=20
> ---------
> To unsubscribe, send email to <aklug-request@aklug.org>
> with 'unsubscribe' in the message body.
--=20

-- Attached file included as plaintext by Listar --
-- File: signature.asc
-- Desc: This is a digitally signed message part

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)

iD8DBQA/tbnnNyWzwlj5xp4RAuoMAKCN5GEDsmqz5wnGZ2HdBxOPURysWwCeJ9H3
JnC4/yE70iQAcjSZbwbyi24=3D
=3DM7Zz
-----END PGP SIGNATURE-----

---------
To unsubscribe, send email to <aklug-request@aklug.org>
with 'unsubscribe' in the message body.

---------
To unsubscribe, send email to <aklug-request@aklug.org>
with 'unsubscribe' in the message body.

• Next message: Tim Johnson: "Re: KDE App Launcher (binary)"
• Previous message: Andy Hall: "Crossover Office"
• Maybe in reply to: Justin Dieters: "Found problem?"
• Next in thread: Mike Tibor: "RE: Found problem?"
• Maybe reply: Hassler, Jeff: "RE: Found problem?"
• Reply: Hassler, Jeff: "RE: Found problem?"

This archive was generated by hypermail 2a23 : Mon Nov 17 2003 - 07:43:18 AKST