Weblog entry #296 for simonw
000000 VIATELIPADDR - - [08/Jan/2009:19:57:23 +0000] "bM\x8b\x84\x99\x04\x17\xe8\xc0\x07&\xa9\x1dt\xe2\x04>amF\x02\x06X\b\x0e\xa6Y\x95\x03u\x
D\xdd)\xddA)\x81\x82\xea" 301 250 "-" "-"
Some random spew to port 80.
This HTTP request(?) tripped a really annoying, but minor bug, in the Apache mod_rewrite rewriter program we were using.
I'm guessing from this, and some other issues, that Apache does very little validation of host names it receives from the HTTP client.
So is there a standard way of doing some validation on host names, guess it normally only applies to custom mass virtual hosting configurations so probably my own problem. But I'd like to remove obvious dross from hostnames, is it that HTTP doesn't assume that traditional host and domain names will be used, so Apache can't do better? Sure we fixed the rewriter program, but I've noticed bad domain names can mess up the rash assumptions we make in our log reporting as well, so I'd rather catch them earlier.
Comments on this Entry