Simon Willison’s Weblog

Items tagged django, security in Jun, 2008

Filters: Year: 2008 × Month: Jun × django × security ×


mod_rpaf for Apache. A more secure alternative to Django’s equivalent middleware: sets the REMOTE_ADDR of incoming requests from whitelisted load balancers to the X-Forwarded-For header, without any risk that if the load balancers are missing attackers could abuse it to spoof their IP addresses. # 24th June 2008, 5:02 pm

Types

Years

Months

Tags