On Fri, Dec 19, 2003 at 10:04:15AM -0600, William A. Rowe, Jr. wrote:
>
> UseCanonicalName Off, Host: header provided (HTTP/1.1)
>
> The host name header *excluding the host header port suffix * of the
> request
> is concatenated to httpd 1.3's Port directive setting or the real port
> numb
On Tue, Jun 18, 2002 at 12:41:17PM -0400, Rich Bowen wrote:
>
> http://www.apacheadmin.com/vhost_examples.html
Looks OK to me so far. A suggestion: One of the questions I have seen
a number of times on c.i.w.s.u is about configuring a web server
on a machine with an unpredictable address and dyna
On Sun, Jun 16, 2002 at 06:55:45PM -0400, Joshua Slive wrote:
> Tony Finch wrote:
> > On Sat, Jun 15, 2002 at 10:15:17PM -0400, Joshua Slive wrote:
>
> >>I guess you can put pretty much whatever you like in the Host: header.
> >>It is not a major security whole, i
On Sat, Jun 15, 2002 at 10:15:17PM -0400, Joshua Slive wrote:
> Rich Bowen wrote:
> >
> > Can you elaborate on that? Why would the vhost name ever have a slash in
> > it? I can see that it could be a security problem, but how would one
> > ever get in there?
Script kiddies.
> I guess you can put
