diff options
author | Graham Dumpleton <Graham.Dumpleton@gmail.com> | 2022-07-18 12:29:38 +1000 |
---|---|---|
committer | Graham Dumpleton <Graham.Dumpleton@gmail.com> | 2022-07-18 12:29:38 +1000 |
commit | af3c0c2736bc0b0b01fa0f0aad3c904b7fa9c751 (patch) | |
tree | 43df45e20357ba991aff3416c1a7f2f018a4a94a | |
parent | f4e5138faaccf67971ad4b41cfeeda9ca9842623 (diff) | |
download | mod_wsgi-af3c0c2736bc0b0b01fa0f0aad3c904b7fa9c751.tar.gz |
Add fix to ensure that X-Client-IP header is dropped when is not a trusted header.
-rw-r--r-- | src/server/mod_wsgi.c | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/src/server/mod_wsgi.c b/src/server/mod_wsgi.c index 0123472..a4b49df 100644 --- a/src/server/mod_wsgi.c +++ b/src/server/mod_wsgi.c @@ -14055,6 +14055,7 @@ static void wsgi_process_proxy_headers(request_rec *r) name = ((const char**)trusted_proxy_headers->elts)[i]; if (!strcmp(name, "HTTP_X_FORWARDED_FOR") || + !strcmp(name, "HTTP_X_CLIENT_IP") || !strcmp(name, "HTTP_X_REAL_IP")) { match_client_header = 1; |