Request exceeded the limit of 10 internal redirects

inthukha

Well-Known Member
Jul 17, 2013
61
0
6
cPanel Access Level
Root Administrator
Hello,

I noticed that Apache generate the following error messages from specific IPs. all IPs subnet are different. Maybe DdOS attempt or Slowlories attempt. but i didn't found any logs except this so i m not sure if this is some type of attempt.

Code:
[Thu Aug 15 17:15:15 2013] [error] [client xx.xx.xx.xx] Request exceeded the limit of 10 internal redirects due to probable configuration error. Use 'LimitInternalRecursion' to increase the limit if necessary. Use 'LogLevel debug' to get a backtrace.
[Thu Aug 15 17:15:15 2013] [error] [client xx.xx.xx.xx] Request exceeded the limit of 10 internal redirects due to probable configuration error. Use 'LimitInternalRecursion' to increase the limit if necessary. Use 'LogLevel debug' to get a backtrace.

I already activated the debug log for 24hours but didn't found any error in logs. but back to normal warn i got this error after few hours.



Also, few more error logs that directly target Main directories and i don't summarize from which domain this requests come and how ?


Code:
[Thu Aug 15 23:07:57 2013] [error] [client xx.xx.xx.xx] File does not exist: /usr/local/apache/htdocs/blog_article309519.html
[Thu Aug 15 23:08:06 2013] [error] [client xx.xx.xx.xx] File does not exist: /usr/local/apache/htdocs/blog_article309854.html
[Thu Aug 15 23:08:21 2013] [error] [client xx.xx.xx.xx] File does not exist: /usr/local/apache/htdocs/blog_article310547.html
[Thu Aug 15 23:08:33 2013] [error] [client xx.xx.xx.xx] File does not exist: /usr/local/apache/htdocs/group386.html
[Thu Aug 15 23:08:52 2013] [error] [client xx.xx.xx.xx] File does not exist: /usr/local/apache/htdocs/media81200.html
[Thu Aug 15 23:09:04 2013] [error] [client xx.xx.xx.xx] File does not exist: /usr/local/apache/htdocs/media81201.html



EasyApache latest 2.2.25 with PHP 5.4. Modsecurity.

Any help appreciated.
 

simonas

Well-Known Member
Apr 21, 2013
141
0
16
Lithuania
cPanel Access Level
Root Administrator
Hello,

First log is telling that some users opened page where rewrite rule (probably in .htaccess) keeps redirecting them.

Depending on how many domains you have you should search for requests (log entries) that were made same time ([Thu Aug 15 17:15:15 2013]) in domain's access logs. There you will find the actual request that calls improper rewrite rules.

You could do that manually or use unix command like grep to do a text search in domain's logs directory.

Don't worry about the second. It's normal that somebody will request non-existent files.
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,913
2,203
363
Hello :)

Yes, you should check accounts for .htaccess files with invalid Mod_Rewrite rules. You can typically monitor the Apache error log and access log to determine which account those messages are coming from.

Thank you.