Opened 8 years ago
Last modified 8 years ago
#1222 new enhancement
Update doc to mention about HTSP
| Reported by: | Owned by: | ||
|---|---|---|---|
| Priority: | major | Milestone: | |
| Component: | documentation | Version: | 1.9.x |
| Keywords: | Cc: | ||
| uname -a: | NA | ||
| nginx -V: | NA | ||
Description
security.stackexchange.com/questions/154166/httpoxy-what-about-https-proxy-when-dealing-with-httpoxy-vulnerability
Note:
See TracTickets
for help on using tickets.
It is believed that HTTPoxy is to be fixed in relevant libraries / tools. While mitigation of the vulnerability in nginx is possible, it is not very different from lots of other vulnerabilities which can be mitigated using nginx.