JQuantLib

Verify how secure apache proxy configuration is

Bug #1209620 reported by Richard Gomes on 2009-01-07

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	JQuantLib	New	Medium	Unassigned

Bug Description

Configuration for jquantlib.com (still considered development at this time) is using proxy configuration in order to provide easy access to continuum and archiva via apache (port 80), instead of Tomcat (port 8080). This is handy for some users who has restricted access to network resources.

Before implementing in jquantlib.org (considered production environment), we need to test how secure proxy configuration is.

Reportedly, spammers can use proxy enabled apache servers to send spam and/or post content to other web servers. Basically, the technique consists of performing a CONNECT to external mailservers or GET/POST to external web servers.

This task consists of researching how safe the current configuration is and, if safe, replicate it to jquantlib.org.

======================
Additional Information
======================
http://httpd.apache.org/docs/2.0/mod/mod_proxy.html

Tags:

Revision history for this message

Richard Gomes (frgomes) wrote on 2009-09-09:

Continuum is abandoned.

Now we have Hudson running at http://www.jquantlib.org:8080/hudson

The same question persists: Some users do not have permission to access ports other than 80 (HTTP).

Revision history for this message

Richard Gomes (frgomes) wrote on 2009-09-11:

Rewrite rule defined in our apache configuration file for www.jquantlib.org.

Revision history for this message

Richard Gomes (frgomes) wrote on 2009-11-01:

Kicked to v0.1.4

Revision history for this message

Richard Gomes (frgomes) wrote on 2010-11-25:

dropped back to the pot

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.