RE: Squid & REMOTE_ADDR

From: Dave J Woolley <DJW@dont-contact.us>
Date: Wed, 23 Jun 1999 12:36:49 +0100

> From: Brad Groshok [SMTP:brad@odyssey.on.ca]
>
> There might be a couple ways to skin this cat, but basically I guess I'm
> looking to allow requests to pass right through squid if they are
> accessing
> particular cgi programs or maybe even all cgi's hosted under a certain
> domain.
>
        This won't work, as squid is application level and the outbound
        connection will have squid's address. Normally one just bypasses
        the proxy in the browser for such services, but otherwise one needs
        to hack the router code; I've never heard of this being done, but
        maybe it has.

        Some CGI scripts look for the, non-standard, x-forwarded-for:
header,
        but if they are really concerned about security, this is easy to
        forge.
Received on Wed Jun 23 1999 - 05:55:02 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:46:57 MST