On Sat, 10 Sep 2005, Thomas Reed wrote:
> Certainly..the site in question is http://www.murfreesborotn.gov
>
> I find it strange that when i go to http://www.murfreesborotn.gov// (with 2
> slashes at the end) it load properly through the proxy.
One element in common with this site and the one in the Bugzilla report
mentioned by Henrik Nordstrom is that they both use the Apache Advanced
Extranet Server 2.0.48.
I would suspect that mod_rewrite is being used instead of mod_proxy to
provide access to internal content. Squid is appending a slash and is
causing the security check to match the regex ^.*/$. The following will
work, as well. :)
http://www.murfreesborotn.gov/?huh
The directory list check needs to be done on the internal web server
instead of doing it on the front-end server.
Merton Campbell Crockett
-- BEGIN: vcard VERSION: 3.0 FN: Merton Campbell Crockett ORG: General Dynamics Advanced Information Systems; Intelligence and Exploitation Systems N: Crockett;Merton;Campbell EMAIL;TYPE=internet: mcc@CATO.GD-AIS.COM TEL;TYPE=work,voice,msg,pref: +1(805)497-5045 TEL;TYPE=work,fax: +1(805)497-5050 TEL;TYPE=cell,voice,msg: +1(805)377-6762 END: vcardReceived on Sat Sep 10 2005 - 22:38:01 MDT
This archive was generated by hypermail pre-2.1.9 : Sat Oct 01 2005 - 12:00:03 MDT