This already looked like git-bisect land, when on testing these builds I found that the local test:
$ curl http://localhost/seo-friendly-url -H "X-Forwarded-For: 1.1.1.1"
can still be fooled
while at the same time any remote access like
$ curl 10.253.194.202/foo -H "X-Forwarded-For: 1.1.1.1"
responds to the fix as expected.
Once that was learned I can say that my fix in the PPA actually works, the only change is that the curl test has to be from another host.
2.4.24 30060fb18dcbb18 9d66bcc5a6f66f5 0fe7d5d3d4 9c13f03d1696311 77c1f6170d
2.4.18 b82d3c64494b7a5
Notes to not-nice- but-working build from git :-): /apache. mirror. digionline. de//apr/ apr-util- 1.6.1.tar. gz -O /tmp/apru.tgz /apache. mirror. digionline. de//apr/ apr-1.7. 0.tar.gz -O /tmp/apr.tgz apr-util- 1.6.1 srclib/apr-util layout= Debian --enable-so --with- program- name=apache2 --enable-suexec --with- suexec- caller= www-data --with- suexec- bin=/usr/ lib/apache2/ suexec --with- suexec- docroot= /var/www --with- suexec- userdir= public_ html --with- suexec- logfile= /var/log/ apache2/ suexec. log --with- suexec- uidmin= 100 --enable- suexec= shared --enable- log-config= static --with- apr=/usr/ bin/apr- 1-config --with- apr-util= /usr/bin/ apu-1-config --with-pcre=yes --enable-pie --enable- mpms-shared= all --enable- mods-shared= "all cgi ident proxy_fdpass" --enable- mods-static= "unixd logio watchdog version" CFLAGS="-pipe" LDFLAGS= "-Wl,-- as-needed" LTFLAGS= "--no-silent" \n\techo yeah" > srclib/Makefile apache2/ modules/ mod_remoteip. so /usr/lib/ apache2/ modules/ mod_rewrite. so /usr/sbin/apache2; ll /usr/lib/ apache2/ modules/ mod_remoteip. so /usr/lib/ apache2/ modules/ mod_rewrite. so /usr/sbin/apache2
$ git clean -x -f -d
$ wget https:/
$ wget https:/
$ tar -xf /tmp/apr.tgz -C srclib/
$ tar -xf /tmp/apru.tgz -C srclib/
$ mv srclib/apr-1.7.0 srclib/apr
$ mv srclib/
$ ./buildconf
$ ./configure --enable-
$ printf "all:\n\techo yeah\ninstall:
$ make
$ make install
$ md5sum /usr/lib/
$ systemctl restart apache2
2.2.24 73c9d5b558f4255 43 /usr/lib/ apache2/ modules/ mod_remoteip. so 929dbcd7aec3b25 da /usr/lib/ apache2/ modules/ mod_rewrite. so 3fd50edd0f47686 ab /usr/sbin/apache2 apache2/ modules/ mod_remoteip. so* apache2/ modules/ mod_rewrite. so*
a956ffb3146d4d5
3da6c1a5cd722a5
d1bdb21f7aaf986
-rwxr-xr-x 1 root root 18288 Jun 16 08:04 /usr/lib/
-rwxr-xr-x 1 root root 96384 Jun 16 08:05 /usr/lib/
-rwxr-xr-x 1 root root 933200 Jun 16 08:05 /usr/sbin/apache2*
=> works
2.2.18 45f85eb88e5cf3c 98 /usr/lib/ apache2/ modules/ mod_remoteip. so 346b19e223fafe6 c5 /usr/lib/ apache2/ modules/ mod_rewrite. so df927bc1068d6f4 c0 /usr/sbin/apache2 apache2/ modules/ mod_remoteip. so* apache2/ modules/ mod_rewrite. so*
8bbf7be2a5a7180
bbb2b45e6c1da8e
2877029808bfd25
-rwxr-xr-x 1 root root 18288 Jun 16 08:28 /usr/lib/
-rwxr-xr-x 1 root root 96264 Jun 16 08:28 /usr/lib/
-rwxr-xr-x 1 root root 898528 Jun 16 08:28 /usr/sbin/apache2*
=> Fails
This already looked like git-bisect land, when on testing these builds I found that the local test: localhost/ seo-friendly- url -H "X-Forwarded-For: 1.1.1.1"
$ curl http://
can still be fooled
while at the same time any remote access like
$ curl 10.253.194.202/foo -H "X-Forwarded-For: 1.1.1.1"
responds to the fix as expected.
Once that was learned I can say that my fix in the PPA actually works, the only change is that the curl test has to be from another host.
@Marcus - can you confirm that in your testing?