Help: mod_proxy exploit on apache + zope
All, My server was used for hacking other servers by some morons. mod_proxy was set wide open - we were getting used as a relay for attacks on all sorts of servers. For the sake of people getting attacked, I've had to set it to Deny from all. This seems to have broken my zope sites, however. I have a machine with virtual hosts with freebsd, apache2, and zope. Im using rewrite rules to make zope work. Both mod proxy and mod rewrite are enabled. Does anyone know of a fix? We need to only allow certain interactions with zope to take place(localhost) and that is from zope domains. I heard about the use of http://httpd.apache.org/docs-2.0/mod/mod_cgid.html with zope and apache2... can anyone help? If they can ill write up a full how-to on it as it is of a high importance for zope hosters i think... Panicing, Wayne. wayne@c-media.com.au __________________________________________________ Do you Yahoo!? Yahoo! Web Hosting - establish your business online http://webhosting.yahoo.com
On Thu, Mar 13, 2003 at 03:01:01PM -0800, Wayne Connolly wrote:
All,
My server was used for hacking other servers by some morons. mod_proxy was set wide open - we were getting used as a relay for attacks on all sorts of servers. For the sake of people getting attacked, I've had to set it to Deny from all.
Are you using it as a regular proxy or just to front-end Zope? If you're just front-ending Zope, then check to make sure "ProxyResuests" is NOT set to On. This will enable the proxy service which you don't need. You will need the proxy module loaded for rewrite to fetch the URL from Zope but you shouldn't need the proxy service enabled.
This seems to have broken my zope sites, however.
Yup. mod_rewrite uses parts of mod_proxy. -- Dave =============================================================== | <- You must be smarter than this stick to ride the Internet -Mike Handler ===============================================================
participants (2)
-
Dave Hall -
Wayne Connolly