[attempted post previously, but seems to have been silently swallowed.] I have an apache server using mod_proxy that is acting like an open proxy even though I have ProxyRequests turned Off.
the conf excerpt: ProxyRequests Off RewriteEngine on RewriteRule ^/$ /index.html #pass requests for / to /index.html RewriteRule ^/index.html http://%{HTTP_HOST}:8008/index.html [P] The 8008 port is modperl with no proxy configurations in httpd.conf at all. Perhaps I'm missing something simple: I guess I want the reverse of ProxyBlock - I want to allow a pass only to a specified set of servers, stopping any external targets. I see from http://www.mail-archive.com/[EMAIL PROTECTED]/msg17546.html that there seems to be a proposal for what I need, 'AllowHttpProxy', but that's as yet unimplemented, afaik. I need the RewriteRule because I need to pass the (in my case) intentionally varying HTTP_HOST in the URL (well, at least, that's how it's currently coded). Given that need, how can I avoid looking like an open proxy? Is the modperl port acting like a default proxy? Commenting out that RewriteRule stops the behavior, so port 80 is not acting like a proxy by itself. Should I add some proxy config in the modperl conf to deliberately set proxy=off? Thanks for any pointers, vince -- Reporting bugs: http://perl.apache.org/bugs/ Mail list info: http://perl.apache.org/maillist/modperl.html List etiquette: http://perl.apache.org/maillist/email-etiquette.html