I'm seeing a lot of these: Code: ::1 - - [19/Aug/2022:19:06:49 +0200] "GET /server-status?auto HTTP/1.1" 200 890 "-" "Go-http-client/1.1" ::1 - - [19/Aug/2022:19:06:50 +0200] "GET /server-status?auto HTTP/1.1" 200 889 "-" "Go-http-client/1.1" ::1 - - [19/Aug/2022:19:06:51 +0200] "GET /server-status?auto HTTP/1.1" 200 887 "-" "Go-http-client/1.1" ::1 - - [19/Aug/2022:19:06:52 +0200] "GET /server-status?auto HTTP/1.1" 200 890 "-" "Go-http-client/1.1" ::1 - - [19/Aug/2022:19:06:53 +0200] "GET /server-status?auto HTTP/1.1" 200 887 "-" "Go-http-client/1.1" ::1 - - [19/Aug/2022:19:06:54 +0200] "GET /server-status?auto HTTP/1.1" 200 892 "-" "Go-http-client/1.1" ::1 - - [19/Aug/2022:19:06:55 +0200] "GET /server-status?auto HTTP/1.1" 200 894 "-" "Go-http-client/1.1" ::1 - - [19/Aug/2022:19:06:56 +0200] "GET /server-status?auto HTTP/1.1" 200 896 "-" "Go-http-client/1.1" ::1 - - [19/Aug/2022:19:06:57 +0200] "GET /server-status?auto HTTP/1.1" 200 896 "-" "Go-http-client/1.1" ::1 - - [19/Aug/2022:19:06:58 +0200] "GET /server-status?auto HTTP/1.1" 200 895 "-" "Go-http-client/1.1" But I don't know why and where they are from? I'm also seeing: Code: "GET /manual/ko/mod/mod_authz_user.html HTTP/1.1" 200 2967 " Why is this manualy accessible from any domain by default on ispconfig 3? It's a standard perfect server setup using debian.
This is not ISPConfig related and not configured by ISPConfig, it's the default of the OS you have chosen. The requests are from localhost, so they are coming from some kind of monitoring script that you seem to have installed. And accessing the Apache status page is limited to your local system by default on Debian, so that's perfectly fine.
Thanks a lot for the quick reply! Aha, so it must be netdata then, thanks for the clarification! But what about the manual path? I don't see it in apache vhost files. Is it an apache module default? Seems to be authz_user_module, is it used by ispconfig?
The status page on Debian is configured in /etc/apache2/mods-enabled/status.conf and access is limited to local IP#s, so what you see is fine and there is no need to change anything as no one from an external IP can access it.
You're right, it's set to local. And the manuals paths? /manual/ko/mod/mod_authz_user.html for example
It's really easy to find where something is configured in apache. Example: Code: grep -R /manual /etc/apache2/
That's a great tip! I had a look, it's just plain html files, weird that random IPs are requesting that.
Not really, it was enough, I solved it with a custom filter: Code: SetEnvIf Request_URI "^/server-status$" dontlog CustomLog ${APACHE_LOG_DIR}/access.log combined env=!dontlog
