{"id":167,"date":"2018-05-20T21:18:33","date_gmt":"2018-05-20T12:18:33","guid":{"rendered":"https:\/\/0x0c.info\/?p=167"},"modified":"2018-05-20T21:18:33","modified_gmt":"2018-05-20T12:18:33","slug":"%e3%80%90modsecurity%e3%80%91audit%e3%83%ad%e3%82%b0%e3%81%abmod_remoteip%e3%81%a7%e5%8f%96%e3%81%a3%e3%81%9fip%e3%82%a2%e3%83%89%e3%83%ac%e3%82%b9%e3%82%92%e8%a8%98%e9%8c%b2%e3%81%99%e3%82%8b","status":"publish","type":"post","link":"https:\/\/0x0c.info\/?p=167","title":{"rendered":"\u3010modsecurity\u3011audit\u30ed\u30b0\u306bmod_remoteip\u3067\u53d6\u3063\u305fip\u30a2\u30c9\u30ec\u30b9\u3092\u8a18\u9332\u3059\u308b"},"content":{"rendered":"

\t\t\t\tapache\u306e\u30b3\u30fc\u30c9\u3092\u66f8\u304d\u63db\u3048\u307e\u3059\u3002<\/p>\n

\u65b9\u6cd5\u306f2\u7a2e\u985e\u3042\u308a\u307e\u3059\u3002\u3068\u308a\u3042\u3048\u305a\u554f\u984c\u306a\u3051\u308c\u30701\u304c\u304a\u3059\u3059\u3081\u3002<\/p>\n

1) \u30ed\u30b0\u3092\u66f8\u304f\u3068\u3053\u308d\u3067\u4fee\u6b63<\/h3>\n

\u30ed\u30b0\u306b\u66f8\u304f\u3068\u3053\u308d\u3060\u3051\u5909\u66f4\u3059\u308b\u306e\u3067\u624b\u8efd
\n apache2\/msc_logging.c \u306e1647\u884c\u76ee\u306b\u4e0b\u8a18\u306e\u3088\u3046\u306b\u5909\u66f4\u3092\u304b\u3051\u307e\u3059\u3002<\/p>\n

$ diff modsecurity-2.9.1\/apache2\/msc_logging.c ..\/modsecurity-2.9.1\/apache2\/msc_logging.c\n1647c1647\n<         current_logtime(msr->mp), msr->txid, msr->remote_addr, msr->remote_port,\n---\n>         current_logtime(msr->mp), msr->txid, msr->useragent_ip ? msr->useragent_ip : msr->remote_addr, msr->remote_port,\n<\/code><\/pre>\n
2) remote_addr \u5909\u6570\u3092\u53d6\u3063\u3066\u304f\u308b\u3068\u3053\u308d\u3067\u4fee\u6b63<\/h3>\n
\u5168\u4f53\u306b\u5909\u66f4\u304c\u304b\u304b\u308b\u306e\u3067\u3001\u691c\u8a3c\u304c\u5fc5\u8981\u3001\u304b\u3082\u3002\u3061\u3087\u3063\u3068\u30ea\u30b9\u30ad\u30fc\u3002
\n   apache2\/mod_security2.c \u306e537\u884c\u76ee\u306b\u4e0b\u8a18\u306e\u3088\u3046\u306b\u5909\u66f4\u3092\u304b\u3051\u307e\u3059\u3002<\/p>\n
$ diff modsecurity-2.9.1\/apache2\/mod_security2.c ..\/modsecurity-2.9.1\/apache2\/mod_security2.c\n537c537\n<     msr->remote_addr = r->connection->client_ip;\n---\n>     msr->remote_addr = r->useragent_ip ? r->useragent_ip : r->connection->client_ip;\n<\/code><\/pre>\n","protected":false},"excerpt":{"rendered":"
apache\u306e\u30b3\u30fc\u30c9\u3092\u66f8\u304d\u63db\u3048\u307e\u3059\u3002 \u65b9\u6cd5\u306f2\u7a2e\u985e\u3042\u308a\u307e\u3059\u3002\u3068\u308a\u3042\u3048\u305a\u554f\u984c\u306a\u3051\u308c\u30701\u304c\u304a\u3059\u3059\u3081\u3002 1) \u30ed\u30b0\u3092\u66f8\u304f\u3068\u3053\u308d\u3067\u4fee\u6b63 \u30ed\u30b0\u306b\u66f8\u304f\u3068\u3053\u308d\u3060\u3051\u5909\u66f4\u3059\u308b\u306e\u3067\u624b\u8efd apache2\/msc_logging.c \u306e1647\u884c\u76ee\u306b\u4e0b\u8a18\u306e\u3088\u3046\u306b\u5909\u66f4\u3092\u304b\u3051\u307e\u3059\u3002 $ diff modsecurity-2.9.1\/apache2\/msc_logging.c ..\/modsecurity-2.9.1\/apache2\/msc_logging.c 1647c1647 < current_logtime(msr->mp), msr->txid, msr->remote_addr, msr->remote_port, — > current_logtime(msr->mp), msr->txid, msr->useragent_ip ? msr->useragent_ip : msr->remote_addr, msr->remote_port, 2) remote_addr \u5909\u6570\u3092\u53d6\u3063\u3066\u304f\u308b\u3068\u3053\u308d\u3067\u4fee\u6b63 \u5168\u4f53\u306b\u5909\u66f4\u304c\u304b\u304b\u308b\u306e\u3067\u3001\u691c\u8a3c\u304c\u5fc5\u8981\u3001\u304b\u3082\u3002\u3061\u3087\u3063\u3068\u30ea\u30b9\u30ad\u30fc\u3002 apache2\/mod_security2.c \u306e537\u884c\u76ee\u306b\u4e0b\u8a18\u306e\u3088\u3046\u306b\u5909\u66f4\u3092\u304b\u3051\u307e\u3059\u3002 $ diff modsecurity-2.9.1\/apache2\/mod_security2.c ..\/modsecurity-2.9.1\/apache2\/mod_security2.c 537c537 < msr->remote_addr = r->connection->client_ip; — > msr->remote_addr = r->useragent_ip ? r->useragent_ip : r->connection->client_ip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4],"tags":[14,50,51],"class_list":["post-167","post","type-post","status-publish","format-standard","hentry","category-linux","tag-apache","tag-mod_remoteip","tag-modsecurity"],"_links":{"self":[{"href":"https:\/\/0x0c.info\/index.php?rest_route=\/wp\/v2\/posts\/167","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/0x0c.info\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/0x0c.info\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/0x0c.info\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/0x0c.info\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=167"}],"version-history":[{"count":0,"href":"https:\/\/0x0c.info\/index.php?rest_route=\/wp\/v2\/posts\/167\/revisions"}],"wp:attachment":[{"href":"https:\/\/0x0c.info\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=167"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/0x0c.info\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=167"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/0x0c.info\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=167"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}