Block Http Requests Coming Via Proxy
Jun 24, 2007I want to block all http requests coming to my website via proxy. Is there any way/script to achieve this on the server?
View 5 Replies
ADVERTISEMENT
Http-put Proxy / Http-connect Proxy
Oct 28, 2007Anyone can inform how to fix "http-put proxy" or "http-connect proxy" ?
My hosting provider said that my dedicated server is not secure because of that.
I use CentOS 4.x and only Apache 2.0.52
# rpm -qa | grep htt
httpd-2.0.52-28.ent.centos4
httpd-suexec-2.0.52-28.ent.centos4
I searched about the topic but got not much information.
HTTP Requests With Crontab?
Apr 20, 2005I set up a cron to run every minute & I'm running a PHP script by way of cron like
wget http://example.com/some_script.php
Now does each request of Cron is a seperate HTTP Request or what? Say my script takes more than 1 minute to execute completely but before its completed, its called again. So, will that effect the PHP script running because of previous HTTP Request or will it create a new HTTP Request & let the previous request finish its operation? Technically, it shouldn't block/affect the previous request, but I'm not sure!!
Over 1000 Http Requests
Jan 12, 2008Quote:
netstat -anpl|grep 80|grep 74.xx.179.xxx|wc -l
990
I observed too many http requests into the server, so just wonder how your guys twaek server to accept over 1000 request and more?
What Else Would Be Blocking HTTP Requests
Jan 19, 2007I have a guy who can't get to any of the 100 or so virtual hosts on my RHEL3 server.
It's running the latest Apache RPM from RedHat. I also have mod_evasive and mod_security running.
Here's what I know. The guy *CAN* connect via SSH and FTP. The guy *CAN* see the default web page when he hits the IP in his web browser (e.g. he types [url]into the address bar on IE). But when he uses any of the host names on the server he *CAN NOT* see anything. He gets timeout errors.
His IP in NOT in ANY error logs, it's not in mod_evasive or mod_security, it's not in IPTABLES, it's not anywhere I can see.
I must be missing something. Anyone have any ideas?
What would be in front of Apache blocking his requests?
Should I Block Ping Requests
Jul 25, 2009Should I block ping request to my servers from WAN?
View 12 Replies View RelatedWay To Block Too Many POST Requests
Apr 17, 2007if there is a rule to add to firewall or mod_security to ban any IP which is sending more xx number of POST requests to the same URL?
View 6 Replies View RelatedAll Http Requests To My Server Redirected
Oct 8, 2007There seems to be some problem with my server, none of the websites hosted on my server are accessible, the http requests either return a blank page or a page with a red quare on the upper left hand corner.
I am not sure if this is some kind of infection or DNS problem or a problem with memory apache is taking up
as i have thousands of virtualhost entries in my access log accumulated over the years out of which only a few 100 websites i am serving presently, but never deleted the non-exitent virtualhost blocks.
At times the websites are opening but most of the times they are not. And when they do not open my http requets are not logged in apacha access log.
Even the customers have reported the same problem.
Also, just four days back i had a strange issue where all
http requests to my server would take me to [url].
I can SSH to server, and everything else is working fine.
Block GET Requests To Specific Files
Apr 12, 2009I am getting a lot of GET requests from different IPs to 4 nonexistent PHP files on my server. Is there any way to block the requests to avoid the resources use of apache that these requests are generating?
I have installed mod_security but Im not sure about how the block rule should be.
The requests are going to images/log.php, images/log2.php, images/log3.php and images/logi.php of one of the sites hosted on the server, is there any way to block there requests for a specific domain or path?
All HTTP Requests To My Server Gets Redirected To Malware Websites
Jul 24, 2009When i try to open any website hosted on my server (around 50 of them) i am being taken to following malware website;
[url]
[url]
This is a problem with my Limnux server running Apache and not a virus on my local computer as customers from all over are reporting the same issue.
As soon as i restart Apache eveything returns to normal with no such redirects.
I think my server is being attacked causing http requests to get redirected to some malicious website.
This issue would resurface almost every hour and would not go away till i restart apache.
So far my Datacenter techs. have not been able to identify the cause of this.
Apache Down With 503 Error / Http Requests Get Redirected / Is Server Hacked
Jun 4, 2009My Linux Server's Http Daemon (Apache) would stop serving websites ever so often, as soon as apache is restarted the error fixes iteself only to resurface within few hours.
The apache process would still be running i.e. apache does not die but no websites hosted on my server would be accessible from browser. And when this happens the apache logs do not log any http requests.
Instead when this happens all http requests to my server would be redirected to some weird Trojan website and my Norton Antivirus would show an Alert/Warning, for example;
"Browser exploit at www.xxx.xxx was blocked"
Risk Name: MSIE WebViewFolderIcon ActiveX Control BO
or another error like;
"Auto-Protect has detected Trojan.Fakeavalert".
At first i thought the problem could be with my Laptop/ISP so i logged on to the server via SSH and opened try to open a website using command line "lynx mywebsite.com" and it shows following error;
"Alert!: HTTP/1.0 503 Service Unavailable".
Now if i assume my laptop were to be infected, then as soon as i restart my apache and visit mywebsite.com eveything returns to normal with no such warnings. Why do i see those norton error messages only when apache is down with 503, and when apache is down with 503 how come the http requests always get redirected to some suspicious websites and nothing gets logged in apache error log?
I think my server is being attacked causing http to get unresponsive and thereafter http requests to my server are redirected to some malicious website, is this correct?
Also, i suspect this is a php script exploit as some customers have reported that google have blocked their website due to security reasons, i found <iframe> tage inserted in some php pages which i fixed.
Also, another thinh i noticed;
when apache responds with the 503 it is referencing PHP 5.1.4 in the header response:
[root@]# curl -I xxx.xxx.xxx.xxx (my server ip)
HTTP/1.0 503 Service Unavailable
Server: Apache
X-Powered-By: PHP/5.1.4
Retry-After: 20
I am running PHP 4.3.9m why does apache responds with PHP 5.1.4 when this 503 error surfaces?
Also, since my apache was dowan with 503 error a customer mailed in today saying;
"It seems that my site www.xxxx.com is regularly down, and the winlogon virus is involved."
I suspect this is again due to the fact that http requests start getting redirected?
Block Proxy
Feb 21, 2007How do I block known proxy sites such as anonymouse.org or such via CSF (firewall)? I'll need to block by domains, wildcard domains (such as *proxy.tld) and IP's.
What is the proper way and is there a nice list of such proxies? I'm trying to prevent some degenerate troll from accessing my forum.
HTTP 502 Proxy Error
May 7, 2008Someone tried to access their webmail from a remote location and got a page not found error. It did have the following error like this at the bottom though:
"HTTP 502 Proxy Error - The specified Secure Sockets Layer (SSL) port is not allowed. ISA Server is not configured to allow SSL requests from this port. Most Web browsers use port 443 for SSL requests. (12204)
Internet Security and Acceleration Server"
This is a cpanel server with Centos. I did not find any info via cpanel's forums about the 502 error.
Convert Socks To HTTP Proxy
Aug 5, 2008I am trying to figure out how to do a setup to convert socks to http.
I have an application which only supports http proxy. I am using putty to perform ssh tunneling but I guess I can only use that as a socks connection.
Where Can I Buy Access To UK Http/socks Proxy
May 15, 2008I have been searching for a non web UK proxy. I need to view UK search results and ads
Should I just use ssh tunneling? If so any suggestions on a cheap UK shell account?
Apache :: Allow Access From Webserver - Block From HTTP
Mar 13, 2015I want to run an HTML webpage that accesses an MP3 resource that's also on my website. However, I only want the webpage to have access to the file and block access from those attempting to access the file directly. That leaves me with two options:
1. Block access through the Apache configuration so that only my Webserver can access the resource, or
2. Hide the URL in the code.
How I can go about doing this?
Apache :: Rewriting URL From HTTP To HTTPS With Reverse Proxy
Mar 10, 2015I am using an apache reverse proxy :
httpd -version
Server version: Apache/2.2.15 (Unix)
Server built: Oct 16 2014 14:48:21
In front of an internet liferay server, I m forcing https connexion and my reverse proxy is the SSL endpoint, and it is working fine.
But inside the liferay page there are "http" link to other webserver, and browser are refusing to load them because they are http and not https.
Is there a way in the reverse proxy to rewrite "on the fly" "http" link to "https" so that everything would be load on the browser ?
I was thinking mod_proxy_html but it doesn't seams to do what I want.
Apache :: How To Change URL Of HTTP 302 Returned By Proxy Server
Jan 31, 2014I'm running Apache 2.4.7 on a RHEL 6.4 server. I'm using the Oracle WebLogic Proxy Plugin ver 12.c to connect to a back end server.What's happening is that Apache answers URL.. and proxies the request via the WebLogic Proxy Plugin to internal.blah.com. Unfortunately, the downstream system encounters a problem and issues an http 302 redirect to internal.blah.com/whathappened. I would like to have Apache intercept this http 302 and redirect the client to URL...
View 1 Replies View RelatedLeaseweb, It Had To Be Coming
Feb 29, 2008In January I ordered a server with them, knowing that their support isn't the "best".
The server info ended in spam folder, but that isn't their fault I guess. They advertise that every server comes with 2 IPs, however you only get 1. Until you request that 2nd IP. However, when you call them out of working hours, they tell you that you have to pay 135 euro (about 200 USD), great I will wait for tomorrow then. So the day after I called them again. The person I talked with, was very friendly and started to work on it. About 5 hours later I received an email with the second IP information. I added it, but it didn't get assigned. I rebooted the server etc. Still no 2nd IP. It was already 'after working hours' so I had to wait again, because I wasn't going to pay 200$ for an IP. The day after the guy on the phone tells me they assigned me an IP that was already assigned to another customer (lol)..... Ok, so I asked him if I could get a different IP than I was supposed to get. (Now I had to fix my DNS settings also, but o well....). The new IP info arrived in my inbox about 80 minutes after the call this time. After rebooting the server everything ran flawlessly. I manage my own servers, so I didn't contact their support again.
On the 21st of february, I called their administration about cancelling the server (they had a new offer, which suited me better & because I only wanted a fast network for this server, I didn't care about their support), I was told that if I submitted their cancellation form the same day or the day after, It would be taken care of before the end of the month. So I filled it in and sent it to them on the day after (22 february).
Today I called their administration to check if everything went ok (I didn't want to order the new server & pay the old one at the same time). I was told: No, it isn't cancelled. She checked that my email was there & indeed it was sent to them. She then asked me if I could wait a minute, so she could ask someone else what to do. She told me that she would assign me to a sales guy, who would be able to tell me more about it. He told me that the cancellation has to be done X days in advance. Which I did, then he said: It has to be done a month up front. I asked him why I was told that it would be cancelled on the 22 of february, but now I had to cancel it the 1st of february. He said it was a mistake. There was "nothing" he could do (or wanted to do). I don't have the time do anything about it, so I'll let it be and just pay for another crappy month.
Great, now I'm fed up another month with their server. What if I didn't call them today? I would have had 2 servers with them & they would have, the only thing they want: Money.
SPAM Coming From My Server
Oct 29, 2006I have:
WHM 10.8.0 cPanel 10.9.0-R44
CentOS 3.8 i686 - WHM X v3.1.0
I've gotten several complaints through spamcop in the last several weeks. The headers show the spam mails coming from nobody@ my server and they show the originating IP as my server. The datacenter is threatening to shut me down.
I've looked in the mail queue and haven't found any of the sent spam mails in there (or bounces from them). I am getting bounces into horde that were apparently sent from me.
How do I find which client is sending them? Or maybe the server has been hacked and spam software uploaded somewhere?
Trojans Coming From Myspace?
Sep 25, 2007My friend has been building a myspace page for herself using our old computer and all of a sudden I've found multiple trojans, 1 of which was very tough to get rid of.
Could these trojans be coming from the little dealiemajigs (sp?) she's using to decorate her page?
Where To Load And Memory Is Coming From
Apr 10, 2009im running centos 5 64 bit, cpanel
AMD Phenom 9600
the load is showing as :
* Load Averages: 1.13 1.09 1.02
I don't know where the load is coming from. Normally im getting 0.00 or below .5
I clicked on that link show cpu processes but they are showing 0
I checked apache connections and no load too
identify where the load reported in WHM is coming from
Spam Coming From My Domain
Mar 26, 2007I just got a bounce back from an email address. However I didn't send the original email.
Here is the header of the email which was sent to the other party:
Quote:
Subject:
This blend will help you get thinner
From:
"sales" <myaddress>
Date:
Mon, 26 Mar 2007 19:19:17 -0000
To:
<corprestruct@lists.law.duke.edu>
Received:
from 85.139.98.84.in-addr.arpa (unknown [85.139.98.84]) by lawweb.law.duke.edu (Postfix) with ESMTP id 63EA0292603 for <corprestruct@lists.law.duke.edu>; Mon, 26 Mar 2007 14:19:18 -0400 (EDT)
Received:
from [69.6.190.249] (HELO VORQPXFNM) by 85.139.98.84 (CommuniGate Pro SMTP 5.0.11) with SMTP id 39495966 for corprestruct@lists.law.duke.edu; Mon, 26 Mar 2007 19:19:17 -0000
Message-ID:
<02ec01c76fd3$44a009b0$54628b55@85.139.98.84.inaddr.arpa>
MIME-Version:
1.0
Content-Type:
multipart/alternative; boundary="----=_NextPart_000_02E9_01C76FDB.A62015B0"
X-Priority:
3
X-MSMail-Priority:
Normal
X-Mailer:
Microsoft Outlook Express 6.00.2900.2869
X-MimeOLE:
Produced By Microsoft MimeOLE V6.00.2900.2962
Is there anyway of telling what is sending the spam?
Keeping Files From Coming Up On Google With IIS
Oct 28, 2009I was doing a search on google and retrieved some files on it with some sites that should not be available to the public. I investigated the site a little bit and it looked like they are running ASP. I know with Linux servers you can place a .htaccess file which can restrict bots from accessing certain directories, but how can you do it with a windows server running IIS? I would like to get in contact with these companies and let them know about the issues I ran into with their site.
View 4 Replies View RelatedHow Do I Track Down Spam Coming FROM My Server
May 29, 2007Logwatch says I send out about 3k emails each day and that is a ridiculous amount. I use postfix and do not run any sort of relay, even for myself. I have IPB 2.2.2, Wordpress 2.0.4, and Gallery 2.x.
How can I track down where these messages are originating from? Or perhaps I am reading my LogWatch file incorrectly?
Quote:
--------------------- postfix Begin ------------------------
17999281 bytes transferred
2460 messages sent
26 messages expired and returned to sender
145 messages removed from queue
Top ten senders:
24 messages sent by:
apache (uid=48):
2 messages sent by:
root (uid=0):
Very Frustrating Coming From Shared Hosting.
Sep 24, 2007I write this as my site has been down for some 11 hours now and need a way to calm down while I wait for my new host to get my account "up".
I've used shared hosting since 1995 up until just a month ago. I was always happy with shared hosting. Who can beat $5 a month to have your site up and running? I had all the subdomains I needed and I even had cPanel. Tech support was fantastic. My accounts were ALWAYS set up within 2 hours tops. Life is good.
Then a recent .com I built got too popular too fast and one day I found (even though I was at 75% of my allotted bandwidth for the month) the plug pulled on my site because (even though it was a static site - html and images only) I was taking up too many "cycles". Too bad cycles aren't something advertised when selling a site to a customer. They made the big mistake of not offering me a VPS soultion from my pitiful little shared hosting account, or any other alternative. So I left them, I had no choice as I couldn't trust them any more.
I got a VPS account, which I must say is not an easy thing to shop for because how do you know who is good? Forums are not a 100% indicator and I don't know any better so it's a crap shoot really. So I looked for the most important qualities: it had to be a managed account because I don't know my butt from a hole in the ground when it comes to running a server (I'm the kind of customer who will tell you "you handle the server voodoo, and let me worry about the content on it ok?"), and I needed a quick setup because my site was already dead in the water.
I picked my first VPS host and all seemed good. My server was fully running in about 2 hours. Once I got through the growing pains of getting various things configured (which I didn't do I aksed for this to be done via trouble tickets) everything was set. The only issue that cropped up here and there was downtime. So now I'm shopping for my second VPS host. I just spent even more money than at my last host and what has my experience been thus far?
I will admit I signed up around 2.am. because my site went down at 11p.m. at my previous host so I was in full panic mode. I plunked down the cash and got an automated email saying how my account must be "verified" over the phone. Fine I wait up an hour or so and finally fall asleep when no call is received. I wake up around 10a.m. and have another email from the new host saying how they couldn't get in touch with me on my phone to "verify" me. I check my phone. Nope, no missed calls, no messages. WTF? So I call them. They have my correct number. Could their call have just never registered on my phone? Is there a black hole for phone calls?
They "verify" me by making me repeat info already provided when I signed up. I've never had a host do this to me, this is ridiculous and a waste of time on everyone's part. Stop. It's a waste of time. If was going to steal someone's credit card I'd buy something a heck of a lot more exciting than a Unix web hosting account at 2a.m.
They tell me I'll get an email with my account info. Great. I wait and wait and nothing arrives. It's almost 10 hours now since my site has gone dark. I write the company to say where is that email so I can get going? I get a quick response that says new account take 8-24 hours to set up. Where the heck was this mentioned on the site when I signed up? Why is this important fact hidden? I"m spending $90 a month, I guess my business isn't important enough to rate better service. Unless a whole bunch of people just signed up for more expensive plans than me at the same time, why can I not get "set up" faster?
So now I wait. I'm crossing my fingers this host will be great. Felt good to rant, I'm more relaxed.
Do I Have To Have Proxy Hosting For A Proxy Site
Aug 14, 2009I have a proxy site which is hosted with a proxy host, do i have to use proxy hosting as i have an account with another host i might want to use. The proxy hosting has run out.
View 2 Replies View RelatedMailbox Allowance? My Incoming Emails Have Stopped Coming In
Sep 3, 2008But with my current host, my incoming e-mails have stopped and have done quite a lot of times, If I send an e-mail to myself from another acount, it gets bounced back.
When I'm searching for hosts, I can't see any info on mailbox allowance.
I'm using Outlook to download all my e-mails.
I don't know why they are stopping and I can't find out from the person who got the host from me, in the past he said something about me having to delete e-mails. But this would come back to mailbox space which no hosts seem to advertise, unless it goes under webs space.
If my mailbox is full or ran out of space, does anybody have any recommendations for a host that offers a good amount of mailbox space.
Another question, am I limited to the amount of e-mails I can send with some hosts? I'll be sending out Newsletters to 600+ people each month.