On Tue, 12 Mar 2002 13:33:00 -0600 "J. Craig Woods" <[EMAIL PROTECTED]> wrote:
> James wrote: > > > > > On Sun, 2002-03-10 at 20:26, Pierre Fortin wrote: > > > > Ooops... forgot to add that I needed to hit Return after sending > > > > the GET; so the full instructions are: > > > > > > > > telnet <server> 80 > > > > GET http://<some_other_server> HTTP/1.0 > > > > <Return> > > > > > > > > Without the extra return, the command "just sits" there as you > > > > discovered. > > > > > > > > Sorry for the oversight, > > > > Pierre > > > > > > > > On Sun, 10 Mar 2002 18:01:13 -0700 Ken Thompson <[EMAIL PROTECTED]> > > > > wrote: > > > > > > Pierre, > > > > > > Thankfully mine said connection refused. > > > > Mine 3 simply gave me the index.html page from the box I originally > > telneted into. Not from another server. > > > > James > > > > Just to save my sanity, what is the expected response from a telnet > session into your web server's port? Like James, I get back my > index.html when I run the "GET blah..blah..". Does someone know of some > *good* documentation about this particular aspect of running a apache > web sever? I have looked but found little on this topic > (hint..hint..Pierre) Let's not forget the reason I posted this... if your web server accepts the above command and serves a remote page, then it can be used by kiddies to get access to servers while making it seem all those requests are really coming from you. This is due to your server "proxying"... Give me your server and I'll see if I can use it to access other sites through it... :^) Here's an example of the problem where I connect to Mandrake and actually get a Cisco page: $ telnet www.mandrakesoft.com 80 Trying 63.209.80.236... Connected to www.mandrakesoft.com (63.209.80.236). Escape character is '^]'. get http://www.cisco.com HTTP/1.0 HTTP/1.0 200 OK Date: Tue, 12 Mar 2002 22:37:21 GMT Server: Apache/1.3.12 (Unix) Content-Type: text/html <HTML> <HEAD> [snipped much META stuff] <TITLE>Cisco Connection Online by Cisco Systems, Inc.</TITLE> [snipped rest of page] Turn off proxy in server to stop this... Pierre
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
