[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#425008: apache2: handle X-FORWARDED-FOR by default



> +SetEnvIfNoCase X-Forwarded-For "." from_proxy=1

This is horribly insecure for normal setups without proxy. Any client
could set X-Forwarded-For and modify the logged IP address.




Reply to: