Proxy Requests

Forum Moderators: phranque

Message Too Old, No Replies

Proxy Requests

users should be blocked by the proxy server...

sbk786

4:19 pm on Apr 3, 2006 (gmt 0)

Hi, I have the following section in my httpd.conf

#
ProxyRequests On
ProxyVia On

<Directory proxy:*>
Order deny,allow
Deny from all
Allow from www.example.com
</Directory>
#

but users are still able to use the proxy server from any domain but I want proxy to work only for users origination session from www.mydomain.com domain and all others should be blocked by the proxy server. Please help ...

sbk786

10:43 pm on Mar 31, 2006 (gmt 0)

Hi, I have the following section in my httpd.conf file for apache2 (open source code latest 2.2)
Buy Deny from all is not working. I want only people from www.example.com be able to go out via the proxy.
Please help me what is wrong.

ProxyRequests On
ProxyVia On

<Directory proxy:*>
Order deny,allow
Deny from all
Allow from www.example.com
</Directory>

[edited by: jdMorgan at 6:07 pm (utc) on April 3, 2006]
[edit reason] (Spliced from previous post) [/edit]

jdMorgan

6:16 pm on Apr 3, 2006 (gmt 0)

Because this is a proxy connection, *all* requests will appear to originate from example.com.

Look into a better way to determine whether "users origination session from www.example.com" -- That is, how do you define "user session"? If you have set a user cookie to define a "session", you might be able to check for that instead.


<Directory proxy:*>
#
SetEnvIf Cookie "<your_cookie_name=your_cookie_value>" proxygo
#
Order deny,allow
Deny from all
Allow from proxygo
#
</Directory>

Note that you will need to determine the value of <your_cookie_name=your_cookie_value>. For example, it might be
SetEnvIf Cookie "SESSION_ID=12b47f3c" proxygo

Jim

Proxy Requests

users should be blocked by the proxy server...

sbk786

sbk786

jdMorgan

Join The Conversation

Moderators and Top Contributors

Hot Threads This Week