httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject [Bug 59765] provide a way to obfuscate/hash IP addresses
Date Sat, 23 Jul 2016 14:37:41 GMT

--- Comment #8 from William A. Rowe Jr. <> ---

I'd done this without patching mod_status...

<Location /server-status>
  SetHandler server-status
  <If "%{CONN_REMOTE_ADDR} != ''">
    SetOutputFilter Sed OutputSed "s#<td>[^<]*</td><td
nowrap>#<td>redacted</td><td nowrap>#g"

This provides no client IP, unless a trusted service (e.g. the host itself) is
inspecting the output.

The issue with hashing the IP is that it is reasonably reversible, being only
one DWORD of data (excepting IPv6). The salt can be ascertained by examining
the salt applied to the requester's own entry in the status output.

You are receiving this mail because:
You are the assignee for the bug.

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message