Opened 8 years ago
Last modified 8 years ago
#1222 new enhancement
Update doc to mention about HTSP
Reported by: | Owned by: | ||
---|---|---|---|
Priority: | major | Milestone: | |
Component: | documentation | Version: | 1.9.x |
Keywords: | Cc: | ||
uname -a: | NA | ||
nginx -V: | NA |
Description
security.stackexchange.com/questions/154166/httpoxy-what-about-https-proxy-when-dealing-with-httpoxy-vulnerability
Note:
See TracTickets
for help on using tickets.
It is believed that HTTPoxy is to be fixed in relevant libraries / tools. While mitigation of the vulnerability in nginx is possible, it is not very different from lots of other vulnerabilities which can be mitigated using nginx.