Ver Fonte

Mitigate httpoxy attack (httpoxy.org, CVE-2016-(5385-5388,1000109-1000110)

Steve Kamerman há 9 anos atrás
pai
commit
357d58ad97
2 ficheiros alterados com 2 adições e 0 exclusões
  1. 1 0
      README.md
  2. 1 0
      nginx.tmpl

+ 1 - 0
README.md

@@ -205,6 +205,7 @@ proxy_set_header Connection $proxy_connection;
 proxy_set_header X-Real-IP $remote_addr;
 proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
 proxy_set_header X-Forwarded-Proto $proxy_x_forwarded_proto;
+proxy_set_header Proxy "";
 ```
 
 ***NOTE***: If you provide this file it will replace the defaults; you may want to check the .tmpl file to make sure you have all of the needed options.

+ 1 - 0
nginx.tmpl

@@ -51,6 +51,7 @@ proxy_set_header Connection $proxy_connection;
 proxy_set_header X-Real-IP $remote_addr;
 proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
 proxy_set_header X-Forwarded-Proto $proxy_x_forwarded_proto;
+proxy_set_header Proxy "";
 {{ end }}
 
 server {