Opened 7 months ago

Last modified 7 months ago

#1222 new enhancement

Update doc to mention about HTSP

Reported by: privacyisright@… Owned by:
Priority: major Milestone:
Component: documentation Version: 1.9.x
Keywords: Cc:
Sensitive: no
uname -a: NA
nginx -V: NA

Description

security.stackexchange.com/questions/154166/httpoxy-what-about-https-proxy-when-dealing-with-httpoxy-vulnerability

Change History (1)

comment:1 Changed 7 months ago by mdounin

  • Type changed from defect to enhancement

It is believed that HTTPoxy is to be fixed in relevant libraries / tools. While mitigation of the vulnerability in nginx is possible, it is not very different from lots of other vulnerabilities which can be mitigated using nginx.

Note: See TracTickets for help on using tickets.