>Number: 5252 >Category: general >Synopsis: Directory proxy:* deny doesn't work >Confidential: no >Severity: serious >Priority: medium >Responsible: apache >State: open >Class: sw-bug >Submitter-Id: apache >Arrival-Date: Thu Nov 4 09:20:01 PST 1999 >Last-Modified: >Originator: [EMAIL PROTECTED] >Organization: apache >Release: 1.3.6 >Environment: Linux 2.2.10, RedHat 6.0 gcc version egcs-2.91.66 19990314/Linux (egcs-1.1.2 release). mod_proxy, with a custom patch >Description: I want to deny proxy requests coming from a specific IP address. I have the following in my config:
<Directory proxy:*> order allow,deny deny from 123.45.6.78 </Directory> where 123.45.6.78 is a test IP address that I want to deny. Yet all requests from that IP address succeed. It leaves that IP address in the logs too. When I use "deny from all", it still lets the requests through! I've looked through the bug reports and found a couple of mentions of similar problems, but no solutions that worked for me. I've tried variations, such as Files, DirectoryMatch, Location, and LocationMatch, all to no avail. >How-To-Repeat: mod_proxy, with "deny from all" inside a <Directory: proxy:*> >Fix: No... >Audit-Trail: >Unformatted: [In order for any reply to be added to the PR database, you need] [to include <[EMAIL PROTECTED]> in the Cc line and make sure the] [subject line starts with the report component and number, with ] [or without any 'Re:' prefixes (such as "general/1098:" or ] ["Re: general/1098:"). If the subject doesn't match this ] [pattern, your message will be misfiled and ignored. The ] ["apbugs" address is not added to the Cc line of messages from ] [the database automatically because of the potential for mail ] [loops. If you do not include this Cc, your reply may be ig- ] [nored unless you are responding to an explicit request from a ] [developer. Reply only with text; DO NOT SEND ATTACHMENTS! ]
