RE: Found problem?

Subject: RE: Found problem?
From: Hassler, Jeff (
Date: Mon Nov 17 2003 - 07:43:23 AKST

I have been attempting to follow this discourse since I realize I need
to secure my Linux machines.

So, where do I start reading? I have seen a recommendation for
O'Reilly's Linux Security Cookbook. I believe I need to start with the
very basics.

Thanks in advance.

-----Original Message-----
From: shortpier []=20
Sent: Friday, November 14, 2003 8:30 PM
To: Andy Firman
Cc: AKlug
Subject: Re: Found problem?

Apache has a "redirect" option Also Iptables has a redirect option. I
have used both in the past to enable DMZ type services IE pass a
external port into a novell Groupwise server Webmail server, Novell auth
services for TCP/IP etc (other uses I have doone are Games, Speakfreely,
dialpad etc. For web based stuff I have found apache's redirect to be
the best IE they request a url and it autoredirects to SSL etc.

On Sun, 2003-11-16 at 13:37, Andy Firman wrote:
> On Sun, Nov 16, 2003 at 12:43:45AM -0900, Justin Dieters wrote:
> >=20
> > Yeah. I stopped the proxy stuff - I was expecting Apache to simply
> > drop the requests, or throw them into the error log, but instead it=20
> > keeps responding to them with 404 messagse, which threw me off at=20
> I had ProxyRequests "on" as well. I thought it was necessary for=20
> for my ProxyPass and ProxyPassReverse rules. My apache forwards=20
> requests for to the Zope Zserver which is=20
> running on port 8080. After doing some reading I found that:
> "ProxyRequests directive: This allows or prevents Apache=20
> from functioning as a forward proxy server. Setting ProxyRequests to
> does not disable use of the ProxyPass directive. Warning: Do not=20
> enable proxying until you have secured your server. Open proxy servers
> dangerous both to your network and to the Internet at large."
> So I turned off the ProxyPass and all is well.
> Glad this discussion came up.
> Andy
> ---------
> To unsubscribe, send email to <>
> with 'unsubscribe' in the message body.

-- Attached file included as plaintext by Listar --
-- File: signature.asc
-- Desc: This is a digitally signed message part

Version: GnuPG v1.2.1 (GNU/Linux)


To unsubscribe, send email to <>
with 'unsubscribe' in the message body.

To unsubscribe, send email to <>
with 'unsubscribe' in the message body.

This archive was generated by hypermail 2a23 : Mon Nov 17 2003 - 07:43:18 AKST