mod-security-users

RE: [mod-security-users] Outlook Web Access 2000

[Mathew D. <mat...@ip...>]

>=20-----Original=20Message-----
>=20From:=20Ivan=20Ristic=20
>=20Sent:=2006=20April=202004=2011:07
>=20To:=20Mathew=20Davies
>=20Cc:=20m...@li...
>=20Subject:=20Re:=20[mod-security-users]=20Outlook=20Web=20Access=202000
>=20Mathew=20Davies=20wrote:
>=20>=20Has=20anyone=20managed=20to=20successful=20use=20mod_security=20an=
d=20mod_proxy
>=20>=20with=20Exchange=202000=20OWA=20?=20If=20so=20whats=20the=20secret
>=20=20=20=20Do=20you=20have=20a=20specific=20problem=20with=20it?
Yes=20as=20all=20the=20links=20seems=20to=20be=20generated=20as=20absolute=

I=20can=20list=20my=20inbox=20contents=20by=20visting=20url
http://external.com/username/inbox/?cmd=3Dcontents
but=20all=20the=20linnks=20in=20this=20are=20coded=20to=20internal=20serve=
r=20ie=20if
i=20had=20an=20messages=20called=20test1=20the=20link=20in=20my=20inbox=20=
is
http://internal/username/inbox/test1.eml
which=20when=20I=20try=20click=20on=20it,=20it=20redirects=20to=20that=20i=
t=20doesn't=20work=20as=20
it=20is=20an=20internal=20address.

-mat

______________________________________________________________________
This=20email=20has=20been=20scanned=20by=20the=20MessageLabs=20Email=20Sec=
urity=20System.
For=20more=20information=20please=20visit=20http://www.messagelabs.com/ema=
il=20
______________________________________________________________________

Re: [mod-security-users] Outlook Web Access 2000

[Ivan R. <iv...@we...>]

Mathew Davies wrote:

>>-----Original Message-----
>>From: Ivan Ristic 
>>Sent: 06 April 2004 11:07
>>To: Mathew Davies
>>Cc: mod...@li...
>>Subject: Re: [mod-security-users] Outlook Web Access 2000
>>Mathew Davies wrote:
>>
>>>Has anyone managed to successful use mod_security and mod_proxy
>>>with Exchange 2000 OWA ? If so whats the secret
>>
>>   Do you have a specific problem with it?
> 
> Yes as all the links seems to be generated as absolute
> I can list my inbox contents by visting url
> http://external.com/username/inbox/?cmd=contents
> but all the linnks in this are coded to internal server ie if
> i had an messages called test1 the link in my inbox is
> http://internal/username/inbox/test1.eml
> which when I try click on it, it redirects to that it doesn't work as 
> it is an internal address.

   That's not a mod_security problem.

   One solution is to have internal servers generate external
   addresses. One way to do this is to actually install servers
   to respond to "external.com" and to have a proper, public IP
   address, and then install a gateway in front to re-route
   all TCP packets to port 80 to the proxy instead of going
   to Exchange directly.

   Or, if you can't/don't want to do that, you must put a
   mechanism in place to rewrite links in real-time. mod_proxy_html
   can do that for you.

-- 
ModSecurity (http://www.modsecurity.org)
[ Open source IDS for Web applications ]