[users@httpd] Re: [rt5.ietf.org #11631] specification of .htaccess

2022-11-01 Thread Duy Khanh
Reply7:06, 26 tháng 10, 2022, "Yuji_myst" :hello Please tell me the specification of .htaccess.Place .htaccess in the root directory of the website and set the redirect.We are considering setting more than 2000 redirects.Is there a limit on the number of redirect settings or .htaccess file size? I

[users@httpd] Re: [rt5.ietf.org #11631] specification of .htaccess [EXT]

2022-11-01 Thread Duy Khanh
18:53, 26 tháng 10, 2022, James Smith : If you have that many look at RewriteMap https://httpd.apache.org/docs/current/rewrite/rewritemap.html From: Frank Gingras Sent: 26 October 2022 02:42 To: users@httpd.apache.org Subject: Re: [users@httpd] specification of .htaccess [EXT]

Re: [users@httpd] specification of .htaccess [EXT]

2022-11-01 Thread Duy Khanh
Reply8:22, 2 tháng 11, 2022, Daniel Gruno :On 2022-11-01 20:14, Yuji_myst wrote: Thank you.  I will try the method you replied.  Just to make sure, do you know if there is a limit on the number of  redirect settings or .htaccess file size?Essentially, the limit is the file size limit in your file s

Re: [users@httpd] specification of .htaccess [EXT]

2022-11-01 Thread Daniel Gruno
On 2022-11-01 20:14, Yuji_myst wrote: Thank you. I will try the method you replied. Just to make sure, do you know if there is a limit on the number of redirect settings or .htaccess file size? Essentially, the limit is the file size limit in your file system, or however much memory your se

Re: [users@httpd] specification of .htaccess [EXT]

2022-11-01 Thread Yuji_myst
Thank you. I will try the method you replied. Just to make sure, do you know if there is a limit on the number of redirect settings or .htaccess file size? > 2022/10/26 20:54、James Smith >  > If you have that many look at RewriteMap > https://httpd.apache.org/docs/current/rewrite/rewritemap.h

Re: [users@httpd] Questionable URL being sent to our server

2022-11-01 Thread Darryl Philip Baker
BTW after the host portion of the URL everything is bogus. They are trying variations on the URL, all bogus and only some with the encoding error. Most are just generating 404 errors but when one caused a 400 error, which is very rare for my site, that got my attention. There is not even a valid

Re: [users@httpd] Questionable URL being sent to our server

2022-11-01 Thread Daniel Ferradal
When you have a server in a public network it will receive all sorts of odd attempts and random useless connections, paying attention to each and every one of them will just drive you nuts. If you are really concerned, add IPS, Firewall, etc to your DMZ. But going round and round over a few odd re

Re: [users@httpd] Questionable URL being sent to our server

2022-11-01 Thread Darryl Philip Baker
While they do bother me, but I can’t just block a random cloud address the source IP is probably dynamic so who know when any of them will be assigned to something legit. I just wanted to be sure that there wasn’t a real vulnerability they were trying to exploit. Obviously you can’t DDoS with a

Re: [users@httpd] Questionable URL being sent to our server

2022-11-01 Thread Eric Covener
On Tue, Nov 1, 2022 at 10:26 AM Darryl Philip Baker wrote: > > We are getting a poorly formed URL being requested from our servers. Apache > is returning a 400 error but I am wondering if someone is try to exploit an > issue with some version of some web server out there. Maybe a Dos attack or

Re: [users@httpd] Questionable URL being sent to our server

2022-11-01 Thread Frank Gingras
I would not attribute this to a "DoS", as you can't really DoS httpd with a single request. It looks like plain URL encoding. If those log entries bother you, firewall their IP range(s). On Tue, 1 Nov 2022 at 11:13, Darryl Philip Baker < darryl.ba...@northwestern.edu> wrote: > They are mostly us

Re: [users@httpd] Questionable URL being sent to our server

2022-11-01 Thread Darryl Philip Baker
They are mostly using GET but there were a couple of HEAD requests. The requests are coming from cloud accounts on Google and Amazon. They are using several variations of the URL most get 404 errors, which is responded with by a custom 404 page, this is the only one that is getting a 400 error.

Re: [users@httpd] Questionable URL being sent to our server

2022-11-01 Thread Frank Gingras
What is the HTTP method you see in the logs? Either way, they may trying to use your server as an open proxy, and failing to do so. On Tue, 1 Nov 2022 at 10:27, Darryl Philip Baker < darryl.ba...@northwestern.edu> wrote: > We are getting a poorly formed URL being requested from our servers. > A

[users@httpd] Questionable URL being sent to our server

2022-11-01 Thread Darryl Philip Baker
We are getting a poorly formed URL being requested from our servers. Apache is returning a 400 error but I am wondering if someone is try to exploit an issue with some version of some web server out there. Maybe a Dos attack or worse. Anyone have a clue what is being attempted? Sketchy URL: ht