New port of mod_extract_forwarded, an Apache module that can make proxied

requests appear with client IP. PR: 27998 Submitted by: Anders Nordby <anders@fix.no>
author: James E. Housley <jeh@FreeBSD.org> 2001-06-19 01:59:10 +0000
committer: James E. Housley <jeh@FreeBSD.org> 2001-06-19 01:59:10 +0000
commit: bf4b2173ef0aea76fe2eb4ee33e571203d6b4fc9 (patch)
tree: 51156aaecd82a0ebe838fcf37b07fe59213bb224 /www/mod_extract_forwarded/pkg-descr
parent: Use proper syntax in chown (diff)
1 files changed, 13 insertions, 0 deletions
diff --git a/www/mod_extract_forwarded/pkg-descr b/www/mod_extract_forwarded/pkg-descr
new file mode 100644
index 000000000000..a1f0912373d8
--- /dev/null
+++ b/www/mod_extract_forwarded/pkg-descr
@@ -0,0 +1,13 @@
+mod_extract_forwarded hooks itself into Apache's header parsing phase and looks
+for the X-Forwarded-For header which some (most?) proxies add to the proxied
+HTTP requests. It extracts the IP from the X-Forwarded-For and modifies the
+connection data so to the rest of Apache the request looks like it came from
+that IP rather than the proxy IP.
+
+mod_extract_forwarded can be dangerous for host based access control because
+X-Forwarded-For is easily spoofed. Because of this you can configure which
+proxies you trust or don't trust.
+
+WWW: http://web.systhug.com/mod_extract_forwarded/
+
+- Anders Nordby <anders@fix.no>
author	James E. Housley <jeh@FreeBSD.org>	2001-06-19 01:59:10 +0000
committer	James E. Housley <jeh@FreeBSD.org>	2001-06-19 01:59:10 +0000
commit	bf4b2173ef0aea76fe2eb4ee33e571203d6b4fc9 (patch)
tree	51156aaecd82a0ebe838fcf37b07fe59213bb224 /www/mod_extract_forwarded/pkg-descr
parent	Use proper syntax in chown (diff)