How To Secure Apache Proxy Server (mod_proxy)

May 31, 2008May 31, 2008in Apache, CentOS, Debian / Ubuntu, FreeBSD, Linux, Security, Solaris-Unix, Suse, Troubleshooting, Ubuntu Linux last updated May 31, 2008

Q. I’ve proxy (mod_proxy) enabled for Apache under Debian Linux 4.0 server. I’d like to use this to improve performance, but I don’t want an open proxy that can be used by anyone on the Internets? How do I secure my proxy as limiting access is essential as I’m using a forward proxy?

A. You can easily restrict proxy access to single domain, IP or subnet.

Forward proxy example

You can control who can access your proxy via the <Proxy> control block. Use configuration as follows to allow access from your-domain.com only:

<Proxy *>
   Order deny,allow
   Deny from all
   Allow from your-domain.com
</Proxy>

OR allow access from 10.1.5 only

<Proxy *>
   Order deny,allow
   Deny from all
   Allow from 10.1.5
</Proxy>

Posted by: Vivek Gite

The author is the creator of nixCraft and a seasoned sysadmin and a trainer for the Linux operating system/Unix shell scripting. He has worked with global clients and in various industries, including IT, education, defense and space research, and the nonprofit sector. Follow him on Twitter, Facebook, Google+.

1 comment

Milan says:
June 4, 2008 at 8:03 am
I want to how to build new kenrel through complete process
Reply Report comment

nixCraft

nixCraft

How To Secure Apache Proxy Server (mod_proxy)

Forward proxy example

Further readings:

Posted by: Vivek Gite

Share this on:

1 comment

Leave a Comment Cancel reply