diff options
author | James E. Housley <jeh@FreeBSD.org> | 2001-06-19 01:59:10 +0000 |
---|---|---|
committer | James E. Housley <jeh@FreeBSD.org> | 2001-06-19 01:59:10 +0000 |
commit | bf4b2173ef0aea76fe2eb4ee33e571203d6b4fc9 (patch) | |
tree | 51156aaecd82a0ebe838fcf37b07fe59213bb224 /www/mod_extract_forwarded/pkg-descr | |
parent | Use proper syntax in chown (diff) |
New port of mod_extract_forwarded, an Apache module that can make proxied
requests appear with client IP.
PR: 27998
Submitted by: Anders Nordby <anders@fix.no>
Notes
Notes:
svn path=/head/; revision=44195
Diffstat (limited to 'www/mod_extract_forwarded/pkg-descr')
-rw-r--r-- | www/mod_extract_forwarded/pkg-descr | 13 |
1 files changed, 13 insertions, 0 deletions
diff --git a/www/mod_extract_forwarded/pkg-descr b/www/mod_extract_forwarded/pkg-descr new file mode 100644 index 000000000000..a1f0912373d8 --- /dev/null +++ b/www/mod_extract_forwarded/pkg-descr @@ -0,0 +1,13 @@ +mod_extract_forwarded hooks itself into Apache's header parsing phase and looks +for the X-Forwarded-For header which some (most?) proxies add to the proxied +HTTP requests. It extracts the IP from the X-Forwarded-For and modifies the +connection data so to the rest of Apache the request looks like it came from +that IP rather than the proxy IP. + +mod_extract_forwarded can be dangerous for host based access control because +X-Forwarded-For is easily spoofed. Because of this you can configure which +proxies you trust or don't trust. + +WWW: http://web.systhug.com/mod_extract_forwarded/ + +- Anders Nordby <anders@fix.no> |