OSDir


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [users@httpd] Testing for apache open relaying


There is a way with open proxies to PUT content that goes out on port 25.  Or so I seem to recall.  The memory cells are at least a year old, and may be corrupted.

On 09/05/2018 04:32 PM, Ruben Safir wrote:
How do you think Apache will relay mail?  Apache has nothing to do with
email.



On 9/5/18 11:58 AM, Robert Moskowitz wrote:
My mail server is being blocked by barracuda and spamexperts.

I have tested my mail port via mxtoolbox.com and I came out clean and no
relaying.

So I suspect my apache server as a proxy relay.

Is there a similar site to mxtoolbox that will test apache for improper
relaying?

thanks

I thought I had it blocked for this:

# cat 01-allow.conf
<Directory "/var/www/html">
     Options Indexes FollowSymLinks
     AllowOverride None
     Order deny,allow
     allow from 192.168.96.0/255.255.255.0
     allow from 50.253.254.0/255.255.255.240
     deny from all
</Directory>

# more roundcubemail.conf
<VirtualHost *:80>

     ServerName webmail.htt-consult.com
     ServerAlias webmail

     RewriteEngine On
         RewriteCond  %{SERVER_PORT} !^443$
         RewriteRule ^.*$ https://%{SERVER_NAME}%{REQUEST_URI} [L,R]
         ExpiresDefault "access plus 10 years"
         AddOutputFilterByType DEFLATE text/html text/plain text/xml
     php_admin_flag session.cookie_secure "1"


</VirtualHost>


<VirtualHost *:443>

# Round Cube Webmail is a browser-based multilingual IMAP client
#

     ServerName webmail.htt-consult.com
     ServerAlias webmail

     SSLEngine On
     SSLCertificateFile /etc/pki/tls/certs/webmail.htt-consult.com.crt
     SSLCertificateKeyFile /etc/pki/tls/private/webmail.htt-consult.com.key

     DocumentRoot /usr/share/roundcubemail

#    Alias /roundcubemail /usr/share/roundcubemail
#    Alias /webmail /usr/share/roundcubemail

     <Directory /usr/share/roundcubemail/>
             Order Deny,Allow
             Allow from all
         php_admin_flag session.cookie_secure "1"
     </Directory>

</VirtualHost>

<VirtualHost *:443>

# Round Cube Webmail is a browser-based multilingual IMAP client
#

         ServerName web2mail.htt-consult.com
         ServerAlias web2mail

         SSLEngine On
         SSLCertificateFile /etc/pki/tls/certs/webmail.htt-consult.com.crt
         SSLCertificateKeyFile
/etc/pki/tls/private/webmail.htt-consult.com.key

         DocumentRoot /usr/share/roundcubemail

         <Directory /usr/share/roundcubemail/>
                 Order Deny,Allow
                 Allow from all
                 php_admin_flag session.cookie_secure "1"
         </Directory>

</VirtualHost>


=========

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx





---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx