Opened 8 years ago

Last modified 8 years ago

#1222 new enhancement

Update doc to mention about HTSP

Reported by: privacyisright@… Owned by:
Priority: major Milestone:
Component: documentation Version: 1.9.x
Keywords: Cc:
uname -a: NA
nginx -V: NA

Description

security.stackexchange.com/questions/154166/httpoxy-what-about-https-proxy-when-dealing-with-httpoxy-vulnerability

Change History (1)

comment:1 by Maxim Dounin, 8 years ago

Type: defectenhancement

It is believed that HTTPoxy is to be fixed in relevant libraries / tools. While mitigation of the vulnerability in nginx is possible, it is not very different from lots of other vulnerabilities which can be mitigated using nginx.

Note: See TracTickets for help on using tickets.