It definitely adds some traceability to websites that are logging this
field. Purely from a security perspective, I would say if you do not
need it for user-level tracking, it may be a good idea to disable it.
If you are using private addressing on your network, it could disclose
some information about your internal network topology that you may not
want to be public. Just a thought. Take it with a grain of salt.
-jeremy
-----Original Message-----
From: Florin Andrei [mailto:florin@sgi.com]
Sent: Wednesday, October 23, 2002 10:22 AM
To: squid-users@squid-cache.org
Subject: [squid-users] X_FORWARDED_FOR
How useful really is X_FORWARDED_FOR ?
Did anyone experienced bad things (like, websites that do not work
anymore) after disabling X_FORWARDED_FOR ?
-- Florin Andrei I hope you're not that kind of person, who at the same time praises the BSD license, but bitches at monopolies.Received on Wed Oct 23 2002 - 11:49:51 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:10:53 MST