On Mon, Oct 31, 2005 at 04:23:49PM -0500, Eric Covener wrote: > If httpd receives a connection on a link-local (perhaps site-local?)
Only link-local, site-local won't matter (as is decrecated in unicast at least). > IPv6 socket, apr_getnameinfo()/ap_get_remote_host() can/will return > something like the following: myv6host.xyz.com%bge0 yes :) > There doesn't appear to be a way to tell the resolver not to append the zone. Nor should there be, it's part of the unique identification of the origin. > This can trip up mod_auth_access/mod_authz_host/others? when > performing a domain name match (Allow/Deny would have to be encoded > with interface names to match the return value of getnameinfo()) link local addresses should absolutely not be appearing in DNS, and it doesn't make much sense for them to be doing so. I would class this as a non-problem. When connected to on a link-local address, httpd should log the origin with the interface-id intact, otherwide there'd be no way to determine the origin on a multi-homed server :) > If httpd should be agnostic wrt zones, should ap_get_remote_host strip > off anything following a percent symbol? It shouldn't, and no :) -- Colm MacCárthaigh Public Key: [EMAIL PROTECTED]
