[off topic] Configuring an IP blind Apache server

Philippe Gauthier philippe.gauthier at deuxpi.ca
Mon May 1 20:24:01 UTC 2006


Jonathan D. Proulx wrote:
> I'd like a _reverse_ anonymizing proxy, something that blinds Apache
> to the incoming IP adresses in client HTTP requests.  I run a
> webserver with a couple of virtual servers (in the apache sense not
> the Xen/VMWare sense) run by different people and I'd like to scrub
> the IP info from traffic before Apache gets it so that neither their
> vhost configs nor their CMS can log IPs even if they want to.
> 
> It seesm like there should be a way to plub in privoxy or something,
> but I can quite think how.  Any suggestions or pointers?

I was thinking about this problem a while ago and found that a Squid web proxy
could be used to answer HTTP requests. Squid would then forward the requests to
another proxy (Privoxy) see:

http://www.squid-cache.org/Doc/FAQ/FAQ-4.html#ss4.9

There is some discussion of this method and security implications at:

http://wiki.noreply.org/noreply/TheOnionRouter/SquidProxy


-- 
Philippe Gauthier <philippe.gauthier at deuxpi.ca>

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 187 bytes
Desc: OpenPGP digital signature
URL: <http://lists.torproject.org/pipermail/tor-talk/attachments/20060501/e562bfca/attachment.pgp>


More information about the tor-talk mailing list