Bug 65696 - [authz_core] IPv6 addresses are logged in a not recommended format
Summary: [authz_core] IPv6 addresses are logged in a not recommended format
Status: NEW
Alias: None
Product: Apache httpd-2
Classification: Unclassified
Component: mod_authz_core (show other bugs)
Version: 2.4.51
Hardware: PC Linux
: P2 normal (vote)
Target Milestone: ---
Assignee: Apache HTTPD Bugs Mailing List
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2021-11-22 09:25 UTC by shadow
Modified: 2021-11-22 09:25 UTC (History)
0 users



Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description shadow 2021-11-22 09:25:20 UTC
Dear apache team, first of all thank you for awesome piece of software. 

I would like to submit the following bug. IPv6 addresses logged by the authz_core module seem to be logged in a non recommended format ( [client ca00:6920:e180:c12c:ed3f:3024:d991:ec2e:64833] ). This makes it hard for rsyslog to anonymize the logs, because due to the :, it can't distinguish where the IPv6 address ends. 

According to the RFC this format should be used (https://datatracker.ietf.org/doc/html/rfc5952#section-6)

This is already fixed in a next version of rsyslog, but I found it worthy to mention it here, so you might address this in apache2.

See the corresponding bug and bugfix in rsyslog mmanon module: https://github.com/rsyslog/rsyslog/issues/4725

As an example:
```
Nov  1 16:35:44 webserver apache: [Mon Nov 01 16:35:44.705418 2021] [authz_core:error] [pid 3195941:tid 139935243814656] [client ca00:6920:e180:c12c:ed3f:3024:d991:ec2e:64833] AH01630: client denied by server configuration: /var/www/www.mysite.to/www/xmlrpc.php`
```

According to the RFC another format should be used (https://datatracker.ietf.org/doc/html/rfc5952#section-6)
```
Nov  1 16:35:44 webserver apache: [Mon Nov 01 16:35:44.705418 2021] [authz_core:error] [pid 3195941:tid 139935243814656] [client ca00:6920:e180:c12c:ed3f:3024:d991:ec2e]:64833 AH01630: client denied by server configuration: /var/www/www.mysite.to/www/xmlrpc.php`
```

Thank you very much.