Welcome! Log In Create A New Profile

Advanced

GET differs between nginx and Apache

Previous Message Next Message
Forum List Message List New Topic Print View
Toni Mueller
June 20, 2010 05:12PM
Hi,

I just saw this:

$ telnet www.example.com 80
Trying 193.221.127.145...
Connected to www.example.com.
Escape character is '^]'.
GET http://allrequestsallowed.com/?PHPSESSID=5gh6ncjh00043P%5BPHTT%40YCFEJGV%5B HTTP/1.1
Host: www.example.com

HTTP/1.1 302 Moved Temporarily
Server: nginx/0.7.65
Date: Sun, 20 Jun 2010 21:00:50 GMT
Content-Type: text/html
Content-Length: 161
Connection: keep-alive
Location:
http://www.example.com:80/?PHPSESSID=5gh6ncjh00043P%5BPHTT%40YCFEJGV%5B

<html>
<head><title>302 Found</title></head>
<body bgcolor="white">
<center><h1>302 Found</h1></center>
<hr><center>nginx/0.7.65</center>
</body>
</html>


On Apache, I get a 200 and the index.html in the DocumentRoot.

I'd much prefer to throw a 40x at these (ab-)users, than having them
"jump" onto my servers, but couldn't yet achieve this, using the
following rule:

location ^~ [^/] {
return 400;
}



Kind regards,
--Toni++


_______________________________________________
nginx mailing list
nginx@nginx.org
http://nginx.org/mailman/listinfo/nginx
Reply Quote
RSS
Subject Author Posted

GET differs between nginx and Apache

Toni Mueller June 20, 2010 05:12PM



Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 216
Record Number of Users: 8 on April 13, 2023
Record Number of Guests: 421 on December 02, 2018
Powered by nginx      Powered by FreeBSD      PHP Powered      Powered by MariaDB      ipv6 ready