libapache2-mod-rpaf 0.5-3+squeeze1build0.11.10.1 source package in Ubuntu
libapache2-mod-rpaf (0.5-3+squeeze1build0.11.10.1) oneiric-security; urgency=low * fake sync from Debian libapache2-mod-rpaf (0.5-3+squeeze1) stable-security; urgency=high * New maintainer (See: #636732) * Edit 030_ipv6.patch to fix DOS via crafted X-Forwarded-For header (Closes: #683984, thanks to Sébastien Bocahu) -- Steve Beattie <email address hidden> Wed, 22 Aug 2012 16:42:54 -0700
Binary packages built by this source
- libapache2-mod-rpaf: module for Apache2 which takes the last IP from the 'X-Forwarded-For' header
rpaf is short for reverse proxy add forward.
rpaf is for backend Apache servers what mod_proxy_
add_forward is for
frontend Apache servers. It does exactly the opposite of
add_forward written by Ask Bjorn Hansen.
It changes the remote address of the client visible to other Apache modules
when two conditions are satisfied. First condition is that the remote client
is actually a proxy that is defined in httpd.conf. Secondly if there is an
incoming X-Forwarded-For header and the proxy is in its list of known
proxies it takes the last IP from the incoming X-Forwarded-For header and
changes the remote address of the client in the request structure.