don't hide x_Forwarded_For headers if havp is enabled

tags/ipasserelle-base-0.2.65-1 0.2.3
Daniel Berteaud 13 years ago
parent 69d968a605
commit bf63351ae1
  1. 5
      ipasserelle-base.spec
  2. 12
      root/etc/e-smith/templates/etc/squid/squid.conf/96xForwardedFor

@ -1,4 +1,4 @@
%define version 0.2.2 %define version 0.2.3
%define release 1 %define release 1
%define name ipasserelle-base %define name ipasserelle-base
@ -45,6 +45,9 @@ Based on SMEServer, iPasserelle is a specially configured
SME Server, with some additionnal modules SME Server, with some additionnal modules
%changelog %changelog
* Mon Apr 16 2012 Daniel Berteaud <daniel@firewall-services.com> 0.2.3-1.sme
- Don't hide X_Forwarded_For headers in squid if havp is enabled
* Fri Apr 13 2012 Daniel Berteaud <daniel@firewall-services.com> 0.2.2-1.sme * Fri Apr 13 2012 Daniel Berteaud <daniel@firewall-services.com> 0.2.2-1.sme
- Revert previous commit, bootstrap.min.css will go in webapps - Revert previous commit, bootstrap.min.css will go in webapps

@ -1,6 +1,18 @@
{
if (($havp{'status'} || 'disabled') ne 'enabled'){
$OUT .=<<"EOF";
acl localhost src 127.0.0.1 acl localhost src 127.0.0.1
follow_x_forwarded_for allow localhost follow_x_forwarded_for allow localhost
forwarded_for off forwarded_for off
header_access X-Forwarded-For deny all header_access X-Forwarded-For deny all
EOF
}
else{
$OUT .= '';
}
}

Loading…
Cancel
Save