i can see more error when i try to connect with irc (xchat on ubuntu with socket and witout sockets both works) i am getting may messages
[HTML] 2013:01:21-08:42:54 acenn reverseproxy: [Mon Jan 21 08:42:54.000186 2013] [security2:notice] [pid 5264:tid 4148086464] ModSecurity for Apache/2.5.12 (www.modsecurity.org/) configured.
2013:01:21-08:42:55 acenn reverseproxy: [Mon Jan 21 08:42:55.005846 2013] [mpm_worker:notice] [pid 5370:tid 4148086464] AH00292: Apache/2.4.3 (Unix) OpenSSL/1.0.1c configured -- resuming normal operations
2013:01:21-08:42:55 acenn reverseproxy: [Mon Jan 21 08:42:55.006639 2013] [core:notice] [pid 5370:tid 4148086464] AH00094: Command line: '/usr/apache/bin/httpd'
2013:01:21-08:44:16 acenn reverseproxy: [Mon Jan 21 08:44:16.284329 2013] [mpm_worker:notice] [pid 5370:tid 4148086464] AH00297: SIGUSR1 received. Doing graceful restart
2013:01:21-08:44:17 acenn reverseproxy: [Mon Jan 21 08:44:17.000274 2013] [mpm_worker:notice] [pid 5370:tid 4148086464] AH00292: Apache/2.4.3 (Unix) OpenSSL/1.0.1c configured -- resuming normal operations
2013:01:21-08:44:17 acenn reverseproxy: [Mon Jan 21 08:44:17.000309 2013] [core:notice] [pid 5370:tid 4148086464] AH00094: Command line: '/usr/apache/bin/httpd'
2013:01:21-08:44:17 acenn reverseproxy: [Mon Jan 21 08:44:17.000344 2013] [mpm_worker:warn] [pid 5370:tid 4148086464] AH00291: long lost child came home! (pid 5372)
2013:01:21-08:44:17 acenn reverseproxy: [Mon Jan 21 08:44:17.000358 2013] [mpm_worker:warn] [pid 5370:tid 4148086464] AH00291: long lost child came home! (pid 5374)
2013:01:21-08:49:13 acenn reverseproxy: srcip="157.55.32.188" localip="219.64.91.253" size="284" user="-" host="157.55.32.188" method="GET" statuscode="404" reason="-" extra="-" time="7253500" url="/robots.txt" server="www.mydomain.com" referer="-" cookie="-" set-cookie="-"
2013:01:21-08:53:13 acenn reverseproxy: srcip="157.55.32.188" localip="219.64.91.253" size="135" user="-" host="157.55.32.188" method="GET" statuscode="200" reason="-" extra="-" time="1545401" url="/" server="www.mydomain.com" referer="-" cookie="-" set-cookie="-"
2013:01:21-08:53:26 acenn reverseproxy: srcip="157.55.32.188" localip="219.64.91.253" size="135" user="-" host="157.55.32.188" method="GET" statuscode="200" reason="-" extra="-" time="653531" url="/" server="www.mydomain.com" referer="-" cookie="-" set-cookie="-"
2013:01:21-09:14:46 acenn reverseproxy: srcip="85.190.0.3" localip="219.64.91.253" size="543" user="-" host="85.190.0.3" method="GET" statuscode="500" reason="-" extra="-" time="1586907" url="/freenode-proxy-checker.txt" server="www.mydomain.com" referer="-" cookie="-" set-cookie="-"
2013:01:21-09:14:46 acenn reverseproxy: srcip="85.190.0.3" localip="219.64.91.253" size="543" user="-" host="85.190.0.3" method="CONNECT" statuscode="500" reason="-" extra="-" time="1587353" url="/" server="www.mydomain.com" referer="-" cookie="-" set-cookie="-"
2013:01:21-09:14:46 acenn reverseproxy: srcip="85.190.0.3" localip="219.64.91.253" size="543" user="-" host="85.190.0.3" method="POST" statuscode="500" reason="-" extra="-" time="1587244" url="/freenode-proxy-checker.txt" server="www.mydomain.com" referer="-" cookie="-" set-cookie="-"
2013:01:21-09:14:46 acenn reverseproxy: srcip="85.190.0.3" localip="219.64.91.253" size="543" user="-" host="85.190.0.3" method="CONNECT" statuscode="500" reason="-" extra="-" time="1587597" url="/" server="www.mydomain.com" referer="-" cookie="-" set-cookie="-"
2013:01:21-09:14:46 acenn reverseproxy: [Mon Jan 21 09:14:46.021079 2013] [url_hardening:error] [pid 6917:tid 4065180528] [client 85.190.0.3:54909] mod_url_hardening_request_filter(): Unexpected error: String unparsed_uri '213.92.8.7:31204' doesn't start with a slash
2013:01:21-09:14:46 acenn reverseproxy: [Mon Jan 21 09:14:46.021556 2013] [url_hardening:error] [pid 6917:tid 4048395120] [client 85.190.0.3:51311] mod_url_hardening_request_filter(): Unexpected error: String unparsed_uri 'vlad-tepes.bofh.it/freenode-proxy-checker.txt' doesn't start with a slash
2013:01:21-09:14:46 acenn reverseproxy: [Mon Jan 21 09:14:46.021667 2013] [url_hardening:error] [pid 6917:tid 4073573232] [client 85.190.0.3:39154] mod_url_hardening_request_filter(): Unexpected error: String unparsed_uri 'vlad-tepes.bofh.it/freenode-proxy-checker.txt' doesn't start with a slash
2013:01:21-09:14:46 acenn reverseproxy: [Mon Jan 21 09:14:46.021731 2013] [url_hardening:error] [pid 6917:tid 3998038896] [client 85.190.0.3:53608] mod_url_hardening_request_filter(): Unexpected error: String unparsed_uri '213.92.8.7:31204' doesn't start with a slash
2013:01:21-09:15:37 acenn reverseproxy: [Mon Jan 21 09:15:37.632928 2013] [url_hardening:error] [pid 6917:tid 3981253488] [client 85.190.0.3:59004] mod_url_hardening_request_filter(): Unexpected error: String unparsed_uri 'vlad-tepes.bofh.it/freenode-proxy-checker.txt' doesn't start with a slash
2013:01:21-09:15:37 acenn reverseproxy: srcip="85.190.0.3" localip="219.64.91.253" size="543" user="-" host="85.190.0.3" method="POST" statuscode="500" reason="-" extra="-" time="658708" url="/freenode-proxy-checker.txt" server="www.mydomain.com" referer="-" cookie="-" set-cookie="-"
2013:01:21-09:15:37 acenn reverseproxy: [Mon Jan 21 09:15:37.638823 2013] [url_hardening:error] [pid 6917:tid 4031609712] [client 85.190.0.3:44939] mod_url_hardening_request_filter(): Unexpected error: String unparsed_uri '213.92.8.7:31204' doesn't start with a slash
2013:01:21-09:15:37 acenn reverseproxy: [Mon Jan 21 09:15:37.639307 2013] [url_hardening:error] [pid 6917:tid 4023217008] [client 85.190.0.3:56576] mod_url_hardening_request_filter(): Unexpected error: String unparsed_uri 'vlad-tepes.bofh.it/freenode-proxy-checker.txt' doesn't start with a slash
2013:01:21-09:15:37 acenn reverseproxy: [Mon Jan 21 09:15:37.640407 2013] [url_hardening:error] [pid 6917:tid 4006431600] [client 85.190.0.3:35198] mod_url_hardening_request_filter(): Unexpected error: String unparsed_uri '213.92.8.7:31204' doesn't start with a slash
2013:01:21-09:15:37 acenn reverseproxy: srcip="85.190.0.3" localip="219.64.91.253" size="543" user="-" host="85.190.0.3" method="CONNECT" statuscode="500" reason="-" extra="-" time="663610" url="/" server="www.mydomain.com" referer="-" cookie="-" set-cookie="-"
2013:01:21-09:15:37 acenn reverseproxy: srcip="85.190.0.3" localip="219.64.91.253" size="543" user="-" host="85.190.0.3" method="GET" statuscode="500" reason="-" extra="-" time="663666" url="/freenode-proxy-checker.txt" server="www.mydomain.com" referer="-" cookie="-" set-cookie="-"
2013:01:21-09:15:37 acenn reverseproxy: srcip="85.190.0.3" localip="219.64.91.253" size="543" user="-" host="85.190.0.3" method="CONNECT" statuscode="500" reason="-" extra="-" time="667249" url="/" server="www.mydomain.com" referer="-" cookie="-" set-cookie="-"
[/HTML]
but if try to test xss attack it work
2013:01:21-09:50:06 acenn reverseproxy: srcip="192.168.7.135" localip="mypublicip253" size="255" user="-" host="192.168.7.135" method="GET" statuscode="403" reason="waf" extra="Anomaly Score Exceeded (score 60): IE XSS Filters - Attack Detected" time="817200" url="/" server="www.mydomain.com" referer="-" cookie="-" set-cookie="-"
2013:01:21-09:50:23 acenn reverseproxy: srcip="192.168.7.135" localip="mypublicip253" size="309" user="-" host="192.168.7.135" method="GET" statuscode="403" reason="waf" extra="Anomaly Score Exceeded (score 160): IE XSS Filters - Attack Detected" time="779020" url="/" server="www.mydomain.com" referer="-" cookie="-" set-cookie="-"
thanks
Guest User!
You are not Sophos Staff.
