I never saw Bobby's response quoted below, but yes, I'm sure the app is NOT running at the IP that's coming through in the cgi.server_name variable. Attempting to access those IPs in the browser fails (server not found or server 500 errors, depends on the IP).
I'm not really trying to get the server_name from the cgi structure. I know which servers our application is running on. My question has to do with whether I can simply presume these requests are hack/spam attempts, or whether there are legitimate situations where this would happen, e.g., cgi.server_name == cgi.remote_addr Interestingly, I just came upon this post from Ray Camden, which shows just how ridiculously trivial it is to spoof cgi.server_name: http://www.coldfusionjedi.com/index.cfm/2008/6/5/Use-cgiservername-Be-careful Cheers, Kris > Write the error message in order to know more about it. > > You can get the server name using several CGIs variables: > > CGI.SERVER_NAME=iswebmx.lv.cfemex.com > CGI.HTTP_HOST=iswebmx.lv.cfemex.com > CGI.HTTP_REFERER=http://iswebmx.lv.cfemex.com/ > > you can use list function in order to pick server name from http_referer too. > > if you enable debuggin monitore in your ColdFusion Administrator to your IP > you will see all this information in CFMs you invoke > > i hope it helps you... > > greetings > > >>Is it possible that your app is indeed running on the server at that IP >>address? Have you tried to access the IP in a browser? >> >>.:.:.:.:.:.:.:.:.:.:. >>Bobby Hartsfield >>http://acoderslife.com >>http://cf4em.com >> >>I know the cgi structure can be spoofed, and admit to my ignorance as far as >>that goes. We've been getting some error messages showing cgi.Server_Name >>fulfilled with the caller's IP address. >> >>So here is my question: How would this happen? In what cases does the >>CGI.server_name variable get fulfilled with something other than the >>server_name (either IP or domain) CF is running on? Is this a >>browser-specific thing? Or is it really only an indication of a hack >>attempt? >> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;207172674;29440083;f Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:317735 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
