A referrer tells the webserver the location of the last page viewed by your browser. It is normally sent from the browser to the Apache webserver every time the browser requests information.
Archive for the ‘Apache’ Category
Blocking referrers with Apache
Saturday, July 26th, 2003Apache and SSL
Sunday, July 13th, 2003When you want to transmit information through an untrusted channel (i.e. internet) and want to keep that information private, guarantee it’s integrity and keep the authenticity then you need something like SSL. The mod_ssl module provides strong cryptography for the Apache web server through the SSL (Secure Sockets Layer, v2/v3) and the TLS (Transport Layer Security, v1) protocols implementation of OpenSSL. It also provides message digest mechanism to guarantee messages integrity and digital signature for authenticity.
Avoiding nimdas and alike
Sunday, June 1st, 2003If you have your Apache listening to the outside world probably you have received and seen in your logs these anoying entries regarding nimdas, redcodes and so.
As those kiddies really bother me I have made some modifications in my Apache config file.
Although there are other approaches to this problem, I find this one easy and clean.
Edit your httpd config file and add the following:
SetEnvIf Request_URI MSADC imbecil
SetEnvIf Request_URI scripts imbecil
SetEnvIf Request_URI default.ida imbecil
SetEnvIf Request_URI .exe$ imbecil
SetEnvIf Request_URI .dll$ imbecil
SetEnvIf Request_URI .dll$ imbecil
SetEnvIf Request_URI cgi-bin msadc imbecil
CustomLog /var/log/httpd/imbecil.log common env=imbecilErrorLog /var/log/httpd/error.log
CustomLog /var/log/httpd/access.log common env=!imbecil
This will log your kiddies in imbecil.log, so you can take further measures. Bear in mind that requests behind a proxy will be masked by this proxy.
Have a good approach to this problem?
