Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Is there a way to remove apaches Reverse Proxy Request Headers?

Tags:

apache

mod-rewrite

apache2

mod-proxy

mod-headers

When acting as a reverse proxy, apache adds x-forwarded headers as described here.

http://httpd.apache.org/docs/2.2/mod/mod_proxy.html#x-headers

In my configuration I have configured server A as a forward proxy. There is a rule like this:

RewriteRule proxy:(.*example.com)/(.*) $1.mysecondserver.com/$2 [P]

This rule lets the server request the resource from one of my other servers.

On the second server (origin) I have a virtual host container for the resource and another rewrite rule like this:

RewriteRule some-regex some-url [P]

It may not seem to make sense like this but there is a lot of other stuff going on that I left out as it is not part of the problem.

However that final request has these headers:

[X-Forwarded-For] => ip of 1st server
[X-Forwarded-Host] => example.myseconserver.com
[X-Forwarded-Server] => example.com

I want those headers gone.

I seem to be unable to unset them with mod_headers. I can add more entries to them, but I can not remove them.

Any ideas?

like image 603
The Surrican Avatar asked Sep 05 '11 19:09

The Surrican

2 Answers

Since Apache 2, as this pretty answer says, the

ProxyAddHeaders Off

theoretically disables it. In my experiences, it had no effect. However, combined with

<Proxy *>
  ProxyAddHeaders Off
</Proxy>

and, with

  RequestHeader unset X-Forwarded-Host
  RequestHeader unset X-Forwarded-For
  RequestHeader unset X-Forwarded-Server

somewhere it started to work.

like image 97
peterh Avatar answered Oct 22 '22 15:10

peterh

I had the same problem on httpd 2.2 on CentOS 5. Installing httpd 2.4 wasn't possible. But because of some reasons I couldn't switch to nginx completly. So I did it by inserting nginx proxy between httpd and the destination address. So I had: httpd(localhost:80/path) -> nginx(localhost:81/path) -> http://your.destination/path. Installation steps are the following:

  1. Install nginx according to these instructions
  2. Configure nginx to avoid security problems.

  3. Add an location in nginx that will remove those httpd's reverse proxy request headers. It can look like this:

    location /path {
    proxy_set_header x-forwarded-for "";
    proxy_set_header x-forwarded-host "";
    proxy_set_header x-forwarded-server "";
    proxy_pass http://your.destination/path;
}
like image 35
keypress Avatar answered Oct 22 '22 13:10

keypress
Sign in to Comment

Related questions

PHPMyAdmin max upload size will not change, wrong php.ini file
Wampserver icon not going green fully, mysql services not starting up?
Syntax error or access violation: 1055 Expression #8 of SELECT list is not in GROUP BY clause and contains nonaggregated column
a2enmod doesn't work on Mac OS X - Mountain Lion
how do i run a development rails app / website on an ipod
After install OS X El Capitan, Apache not working
htaccess rewrite rules with mod_GeoIP
Gateway Time-out:The gateway did not receive a timely response from the upstream server
Working with pretty urls on apache and fastcgi after hhvm installation
Laravel 5.1.1 LTS: Incomplete Chunked Encoding
Close response under mod_perl 2
Exact Same Request Returns 200 to Postman but 404 to React App
How to enable/configure SOCKS proxy support in apache mod_proxy ( Apache2 )
How can LocationMatch and ProxyPassMatch be Combined?
414 URI too long. But not always
HTTP2 support in MAMP Pro
NodeJS much slower than PHP?
MySQL OperationalError when running a Flask server (Apache) for some days

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!