Mikio Kishi wrote:
> Hi, Amos
>
>> Ah, you need the follow_x_forwarded_for feature on Proxy(1).
>
> That's right, I know about that, but I'd like to use "source address
> spoofing"...
>
> Just only following enables my anxiety.
>
> replacing In tunnelStart()#tunnel.cc
>
>> sock = comm_openex(SOCK_STREAM,
>> IPPROTO_TCP,
>> temp,
>> COMM_NONBLOCKING,
>> getOutgoingTOS(request),
>> url);
>
> with
>
>> if (request->flags.spoof_client_ip) {
>> sock = comm_openex(SOCK_STREAM,
>> IPPROTO_TCP,
>> temp,
>> (COMM_NONBLOCKING|COMM_TRANSPARENT),
>> getOutgoingTOS(request),
>> url);
>> } else {
>> sock = comm_openex(SOCK_STREAM,
>> IPPROTO_TCP,
>> temp,
>> COMM_NONBLOCKING,
>> getOutgoingTOS(request),
>> url);
>> }
>
> I think it has no harmful effects. I long for that.
> Would you modify that ?
>
> Sincerely,
>
> --
> Mikio Kishi
Added to Squid-3.
Amos
-- Please be using Current Stable Squid 2.7.STABLE6 or 3.0.STABLE14 Current Beta Squid 3.1.0.7Received on Fri Apr 24 2009 - 04:20:36 MDT
This archive was generated by hypermail 2.2.0 : Sat Apr 25 2009 - 12:00:02 MDT