Adds a security remark regarding proxied content and the host address,

author Rich Bowen <rbowen@apache.org>

Tue, 5 Jun 2012 15:00:02 +0000 (15:00 +0000)

committer Rich Bowen <rbowen@apache.org>

Tue, 5 Jun 2012 15:00:02 +0000 (15:00 +0000)
author Rich Bowen <rbowen@apache.org>
Tue, 5 Jun 2012 15:00:02 +0000 (15:00 +0000)
committer Rich Bowen <rbowen@apache.org>
Tue, 5 Jun 2012 15:00:02 +0000 (15:00 +0000)
diff --git a/docs/manual/mod/mod_authz_host.xml b/docs/manual/mod/mod_authz_host.xml

index 30bef026697585c3eb8567f19d13744d27944b61..1e16661ac35a75150d22d5749789a14f4c5fd76c 100644 (file)
--- a/docs/manual/mod/mod_authz_host.xml
+++ b/docs/manual/mod/mod_authz_host.xml
@@ -167,6 +167,18 @@ Require host .net example.edu
      <highlight language="config">
      Require local
      </highlight>
+
+</section>
+
+<section id="proxy"><title>Security Note</title>
+
+    <p>If you are proxying content to your server, you need to be aware
+    that the client address will be the address of your proxy server,
+    not the address of the client, and so using the <code>Require</code>
+    directive in this context may not do what you mean. See
+    <module>mod_remoteip</module> for one possible solution to this
+    problem.</p>
+
  </section>
  
  </section>
author	Rich Bowen <rbowen@apache.org>
	Tue, 5 Jun 2012 15:00:02 +0000 (15:00 +0000)
committer	Rich Bowen <rbowen@apache.org>
	Tue, 5 Jun 2012 15:00:02 +0000 (15:00 +0000)