Hello All,
I'm a wikipedia user from TAIWAN. I have a small ssh server at home and use it to build secured connection to internet while I was out. But I found wikipedia seems have problem with it.
I always got "ERROR" page to tell me "try again later", until I found a tiny message at the bottom of that page:
----------------------------- If reporting this error to the Wikimedia System Administrators, please include the following details: Request: GET http://ja.wikipedia.org/, from 220.130.167.166 via yf1002.yaseo.wikimedia.org (squid/2.6.STABLE13) to () Error: ERR_ACCESS_DENIED, errno [No Error] at Thu, 22 Nov 2007 13:09:57 GMT -----------------------------
So, it seems wikipedia server blocked my server or blocked my tunneled connection thru the server. I sent this problem to Wikipedia information team (Ticket#2007112210010413) and get a response to tell I post my problem here.
I waited a few days and confirmed the problem is still exists. Any suggesstion is welcome.
Brst regards,
Brian, H.S. Chen Administrator of maid.hschen.idv.tw (220.130.167.166)
On Tue, Nov 27, 2007 at 12:31:26PM +0800, Brian Chen wrote:
Hello All,
I'm a wikipedia user from TAIWAN. I have a small ssh server at home and use it to build secured connection to internet while I was out. But I found wikipedia seems have problem with it.
Can you provide us with more detail about the setup of your tunnel?
Regards,
jens
2007/11/27, Jens Frank jf@mormo.org:
Can you provide us with more detail about the setup of your tunnel? jens
Here is my SSH tunnel setup:
I use a 3G cellphone to connect to internet, and use PUTTY to connect to my ssh server. On its SSH->Tunnels setting I have following entry: "D1080" (Create a dynamic SOCKS proxy on port 1080 and redirect all connect which uses SOCK5 to ssh server.)
And I set up FireFox to use SOCKS5 proxy at 127.0.0.1: port 1080. In this configuration I can browse most of internet sites.
On Nov 27, 2007 2:35 AM, Brian Chen kiichi@gmail.com wrote:
Here is my SSH tunnel setup:
I use a 3G cellphone to connect to internet, and use PUTTY to connect to my ssh server. On its SSH->Tunnels setting I have following entry: "D1080" (Create a dynamic SOCKS proxy on port 1080 and redirect all connect which uses SOCK5 to ssh server.)
And I set up FireFox to use SOCKS5 proxy at 127.0.0.1: port 1080. In this configuration I can browse most of internet sites.
This should work fine, since it results in a proxy running on your server. If the blocking is resolved then you shouldn't have any other problems.
On Nov 26, 2007 11:31 PM, Brian Chen kiichi@gmail.com wrote:
Hello All,
I'm a wikipedia user from TAIWAN. I have a small ssh server at home and use it to build secured connection to internet while I was out. But I found wikipedia seems have problem with it.
I always got "ERROR" page to tell me "try again later", until I found a tiny message at the bottom of that page:
[snip]
Let me guess. You are doing something like this
ssh myserver -L8080:IP-of-wikipedia:80 then pointing your browser to http://localhost:8080/
Right?
That isn't going to work: Your browser will claim that it's trying to connect to localhost in its http request. The wikimedia squids use the hostname for access control, and the wikimedia Apaches use it to determine which site out of the 700 some wikis you were attempting to reach.
You could probably work around this by putting an entry for xx.wikipedia.org in your hosts file on your client, or by just running a proper proxy on your server.
If the above doesn't solve this issue for you, you'll need to provide more information.
2007/11/27, Gregory Maxwell gmaxwell@gmail.com: That isn't going to work: Your browser will claim that it's trying to connect to localhost in its http request. The wikimedia squids use the hostname for access control, and the wikimedia Apaches use it to determine which site out of the 700 some wikis you were attempting to reach.
If it is the root cause, I have yet another question: My friend (another site admin) lent me a ssh account on his server, I set up the same ssh tunnel and I can connect to wikipedia without problem. (Our servers are in the same ISP domain.)
You could probably work around this by putting an entry for xx.wikipedia.org in your hosts file on your client, or by just running a proper proxy on your server.
I have little knowledge about proxy so I would like to try hosts file entry at first,
for example the ja.wikipedia.org is 203.212.189.253 (nslookup result on my server) So I need to add "203.212.189.253 ja.wikipedia.org" In my c:\windows\drivers\etc\hosts file?
Thanks for your help. Brian.
Brian Chen wrote:
2007/11/27, Gregory Maxwell gmaxwell@gmail.com: That isn't going to work: Your browser will claim that it's trying to connect to localhost in its http request. The wikimedia squids use the hostname for access control, and the wikimedia Apaches use it to determine which site out of the 700 some wikis you were attempting to reach.
If it is the root cause, I have yet another question: My friend (another site admin) lent me a ssh account on his server, I set up the same ssh tunnel and I can connect to wikipedia without problem. (Our servers are in the same ISP domain.)
It's a good question, and the answer is: because it isn't the root cause. We don't block by hostname, so you can't get ERR_ACCESS_DENIED by using the wrong one.
The real reason is because your host (220.130.167.166) was blocked along with 54 other IPs on March 17 this year, due to its apparent involvement in a DoS attempt.
Was this host under your control at the time?
-- Tim Starling
OMG... That's terrible...
I established this server and owned its domain name for more than 4 years, and I also owned this IP for more than two years. So undoubtedly that was my server at that time... I used my server for SSH tunneling and my own blog only and I have no intention to launch any attack against any others' service. Could it be worm or intended hacking?
(The reason I didn't report this question until now is because I had alternative routing to Wikipedia but its blocked due to MIS policy update recently.)
From July this year I formatted its HDD and upgraded its OS
to newest FBSD stable. Can you check your security log to see whether my server is clean? If yes, please help to remove my server from the black list of Wikipedia.
Thanks for your help. Brian.
2007/11/27, Tim Starling tstarling@wikimedia.org:
It's a good question, and the answer is: because it isn't the root cause. We don't block by hostname, so you can't get ERR_ACCESS_DENIED by using the wrong one. The real reason is because your host (220.130.167.166) was blocked along with 54 other IPs on March 17 this year, due to its apparent involvement in a DoS attempt. Was this host under your control at the time? -- Tim Starling
wikitech-l@lists.wikimedia.org